Soft Way company django restfromework authentication service package.
Project description
# sw-django-rest-auth
[](https://travis-ci.org/telminov/sw-django-rest-auth)
[](https://coveralls.io/github/telminov/sw-django-rest-auth?branch=master)
[](https://pypi.python.org/pypi/sw-django-rest-auth)
Package for creating separate authentication service
and using one in other services via rest_framework authentication classes mechanism.
## Install
```
pip install sw-django-rest-auth
```
## Authentication service
add to urls.py
```python
import sw_rest_auth.views
urlpatterns = [
...
url(r'^check_token/', sw_rest_auth.views.check_token),
url(r'^check_login_password/', sw_rest_auth.views.check_login_password),
url(r'^check_perm/', sw_rest_auth.views.check_perm),
...
]
```
add to settings.py TokenAuthentication method.
```python
INSTALLED_APPS = [
...
'rest_framework.authtoken',
'sw_rest_auth',
...
]
REST_FRAMEWORK = {
'DEFAULT_AUTHENTICATION_CLASSES': (
'rest_framework.authentication.TokenAuthentication',
),
}
```
You can generate token using [obtain_auth_token view](http://www.django-rest-framework.org/api-guide/authentication/#generating-tokens)
## Client for authentication service
### Authentication
add to settings.py
```python
AUTH_SERVICE_CHECK_TOKEN_URL = 'https://.../check_token/' # address for authentication service project
AUTH_TOKEN = '0f49bc20b02bc70b034bd9d6036c8155e00109eb' # token for connecting to authentication service
AUTH_VERIFIED_SSL_CRT_PATH = '/etc/ssl/myCompanyCA.crt' # optional path to auth service server ssl-certificate
# for using service as auth backend for standard django authentication
AUTHENTICATION_BACKENDS = ['sw_rest_auth.auth_backends.RestBackend']
AUTH_SERVICE_CHECK_LOGIN_PASSWORD_URL = 'http://127.0.0.1:8000/check_login_password/'
```
Add TokenServiceAuthentication to authentication_classes. For example:
```python
from rest_framework.decorators import api_view, permission_classes
from rest_framework.response import Response
from sw_rest_auth.authentication import TokenServiceAuthentication
from rest_framework.permissions import IsAuthenticated
@api_view(['GET'])
@authentication_classes((TokenServiceAuthentication,))
@permission_classes((IsAuthenticated,))
def index(request):
data = {
'message': 'Hello, world!'
}
return Response(data)
```
### Authorizing
add to settings.py
```python
AUTH_SERVICE_CHECK_PERM_URL = 'https://.../check_perm/'
```
Add CodePermission to view permissions class. For example:
```python
from rest_framework.decorators import api_view, permission_classes
from rest_framework.response import Response
from sw_rest_auth.authentication import TokenServiceAuthentication
from sw_rest_auth.permissions import CodePermission
@api_view(['GET'])
@authentication_classes((TokenServiceAuthentication,))
@permission_classes((CodePermission.decorate(code='CAN_READ_SECRET_DATA'),))
def index(request):
data = {
'message': 'Hello, world!'
}
return Response(data)
```
Don't forget add permissions and permission-user relations in authentication service database
(by means admin interface, for example).
### Requesting
Request to resourse under TokenServiceAuthentication protecting must have header "Authorization" with value starting with "TokenService " and authorized at service token. For example:
```
TokenService 213fe72ffb54e6c83194ec591fb364c3f897ed12
```
[](https://travis-ci.org/telminov/sw-django-rest-auth)
[](https://coveralls.io/github/telminov/sw-django-rest-auth?branch=master)
[](https://pypi.python.org/pypi/sw-django-rest-auth)
Package for creating separate authentication service
and using one in other services via rest_framework authentication classes mechanism.
## Install
```
pip install sw-django-rest-auth
```
## Authentication service
add to urls.py
```python
import sw_rest_auth.views
urlpatterns = [
...
url(r'^check_token/', sw_rest_auth.views.check_token),
url(r'^check_login_password/', sw_rest_auth.views.check_login_password),
url(r'^check_perm/', sw_rest_auth.views.check_perm),
...
]
```
add to settings.py TokenAuthentication method.
```python
INSTALLED_APPS = [
...
'rest_framework.authtoken',
'sw_rest_auth',
...
]
REST_FRAMEWORK = {
'DEFAULT_AUTHENTICATION_CLASSES': (
'rest_framework.authentication.TokenAuthentication',
),
}
```
You can generate token using [obtain_auth_token view](http://www.django-rest-framework.org/api-guide/authentication/#generating-tokens)
## Client for authentication service
### Authentication
add to settings.py
```python
AUTH_SERVICE_CHECK_TOKEN_URL = 'https://.../check_token/' # address for authentication service project
AUTH_TOKEN = '0f49bc20b02bc70b034bd9d6036c8155e00109eb' # token for connecting to authentication service
AUTH_VERIFIED_SSL_CRT_PATH = '/etc/ssl/myCompanyCA.crt' # optional path to auth service server ssl-certificate
# for using service as auth backend for standard django authentication
AUTHENTICATION_BACKENDS = ['sw_rest_auth.auth_backends.RestBackend']
AUTH_SERVICE_CHECK_LOGIN_PASSWORD_URL = 'http://127.0.0.1:8000/check_login_password/'
```
Add TokenServiceAuthentication to authentication_classes. For example:
```python
from rest_framework.decorators import api_view, permission_classes
from rest_framework.response import Response
from sw_rest_auth.authentication import TokenServiceAuthentication
from rest_framework.permissions import IsAuthenticated
@api_view(['GET'])
@authentication_classes((TokenServiceAuthentication,))
@permission_classes((IsAuthenticated,))
def index(request):
data = {
'message': 'Hello, world!'
}
return Response(data)
```
### Authorizing
add to settings.py
```python
AUTH_SERVICE_CHECK_PERM_URL = 'https://.../check_perm/'
```
Add CodePermission to view permissions class. For example:
```python
from rest_framework.decorators import api_view, permission_classes
from rest_framework.response import Response
from sw_rest_auth.authentication import TokenServiceAuthentication
from sw_rest_auth.permissions import CodePermission
@api_view(['GET'])
@authentication_classes((TokenServiceAuthentication,))
@permission_classes((CodePermission.decorate(code='CAN_READ_SECRET_DATA'),))
def index(request):
data = {
'message': 'Hello, world!'
}
return Response(data)
```
Don't forget add permissions and permission-user relations in authentication service database
(by means admin interface, for example).
### Requesting
Request to resourse under TokenServiceAuthentication protecting must have header "Authorization" with value starting with "TokenService " and authorized at service token. For example:
```
TokenService 213fe72ffb54e6c83194ec591fb364c3f897ed12
```
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Close
Hashes for sw-django-rest-auth-0.0.26.tar.gz
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 961e285aa1ab1ac43dcebfc93aaa11ab411109ad54cc9f02a66844b2b009e3b1 |
|
| MD5 | 1ba8e226063d177aec319d65cf4d4852 |
|
| BLAKE2b-256 | 6fab0da7b1c22374e231c9b5b791508ecff87be8a790c7b6b38fae5929f09781 |
