Skip to main content

Quickly add security features to your Flask application.

Project description

https://github.com/Flask-Middleware/flask-security/workflows/tests/badge.svg?branch=master&event=push Coverage! https://img.shields.io/github/tag/Flask-Middleware/flask-security.svg Downloads License Documentation Status https://img.shields.io/badge/code%20style-black-000000.svg pre-commit

Quickly add security features to your Flask application.

Notes on this repo

This is an independently maintained version of Flask-Security forked from the 3.0.0 version of the Original

Goals

  • Regain momentum for this critical piece of the Flask eco-system. To that end the the plan is to put out small, frequent releases starting with pulling the simplest and most obvious changes that have already been vetted in the upstream version, as well as other pull requests. This was completed with the June 29 2019 3.2.0 release.

  • Continue work to get Flask-Security to be usable from Single Page Applications, such as those built with Vue and Angular, that have no html forms. This is true as of the 3.3.0 release.

  • Use OWASP to guide best practice and default configurations.

  • Be more opinionated and ‘batteries’ included by reducing reliance on abandoned projects and bundling in support for common use cases.

  • Follow the Pallets lead on supported versions, documentation standards and any other guidelines for extensions that they come up with.

  • Continue to add newer authentication/authorization standards:
    • ‘Social Auth’ integrated (using authlib) (5.1)

    • WebAuthn support (5.0)

    • Two-Factor recovery codes (5.0)

    • First-class support for username as identity (4.1)

    • Support for fresheness decorator to ensure sensitive operations have new authentication (4.0)

    • Support for email normalization and validation (4.0)

    • Unified signin (username, phone, passwordless) feature (3.4)

Contributing

Issues and pull requests are welcome. Other maintainers are also welcome. Unlike the original Flask-Security - issue pull requests against the master branch. Please consult these contributing guidelines.

Installing

Install and update using pip:

pip install -U Flask-Security-Too

Resources

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

Flask-Security-Too-5.4.2.tar.gz (650.3 kB view details)

Uploaded Source

Built Distribution

Flask_Security_Too-5.4.2-py3-none-any.whl (404.3 kB view details)

Uploaded Python 3

File details

Details for the file Flask-Security-Too-5.4.2.tar.gz.

File metadata

  • Download URL: Flask-Security-Too-5.4.2.tar.gz
  • Upload date:
  • Size: 650.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.0.0 CPython/3.12.2

File hashes

Hashes for Flask-Security-Too-5.4.2.tar.gz
Algorithm Hash digest
SHA256 7735471c2e4bb21eab502f9c3b23447bfb87553ce439b8457df812bc539f2a82
MD5 7d728d8e7c1545688818543ecd4516b0
BLAKE2b-256 e129ad5912443a85f6afc69f2a3ba32bcace871b6ea4078b7a053db092fd04ec

See more details on using hashes here.

Provenance

File details

Details for the file Flask_Security_Too-5.4.2-py3-none-any.whl.

File metadata

File hashes

Hashes for Flask_Security_Too-5.4.2-py3-none-any.whl
Algorithm Hash digest
SHA256 75532809f1295cc5612ca1e4dd7bb861a3bfe64a3f956cda1528b1cca95b6f63
MD5 a8806e1f63a600b27fa6050c63a41587
BLAKE2b-256 55e62debeee014fb25c455df551740eccd066f0890877363201935b3a3fcd08f

See more details on using hashes here.

Provenance

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page