Extra security for your sensitive pages
Project description
What is this for?
Elevate provides an extra layer of security beyond initial user authentication. Views can be decorated with @elevate_required, and then users must re-authenticate to access that resource. This might be useful for deleting objects, canceling subscriptions, and other sensitive operations. After re-authentication, the user has elevated permissions for the duration of ELEVATE_COOKIE_AGE. This duration is independent of the normal session duration, allowing for short elevated permission durations while still retaining long user sessions.
Installation
$ pip install django-elevateCompatibility
Django 2.2, 3.2, and 4.0
Python 3.7 - 3.10
pypy3
Resources
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
django-elevate-2.0.3.tar.gz
(8.4 kB
view hashes)
Built Distribution
Close
Hashes for django_elevate-2.0.3-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 00422cb5742ea3de06a189e245a4ad28eb645a1cde8946ff2e6922132134ae84 |
|
| MD5 | 4c63c7f7ef61ed4935a97141ab7af068 |
|
| BLAKE2b-256 | 4c1c50cf9dece141be826eaf3d9957c8479e4b7902f624a6582726b1722eb511 |
