.. image:: https://badge.fury.io/py/flask-praetorian.svg :target: https://badge.fury.io/py/flask-praetorian :alt: Latest Published Version
.. image:: https://travis-ci.org/dusktreader/flask-praetorian.svg?branch=master :target: https://travis-ci.org/dusktreader/flask-praetorian :alt: Build Status
.. image:: https://readthedocs.org/projects/flask-praetorian/badge/?version=latest :target: http://flask-praetorian.readthedocs.io/en/latest/?badge=latest :alt: Documentation Build Status
flask-praetorian
API security should be strong, simple, and precise like a Roman Legionary.
This package aims to provide that. Using JWT <https://jwt.io/>_ tokens as
implemented by PyJWT <https://pyjwt.readthedocs.io/en/latest/>_,
flask_praetorian uses a very simple interface to make sure that the users
accessing your API's endpoints are provisioned with the correct roles for
access.
This project was heavily influenced by
Flask-Security <https://pythonhosted.org/Flask-Security/>_, but intends
to supply only essential functionality. Instead of trying to anticipate the
needs of all users, flask-praetorian will provide a simple and secure mechanism
to provide security for APIs specifically.
This extension offers a batteries-included approach to security for your API.
For essential security concerns for Flask-based APIs,
flask-praetorian <https://github.com/dusktreader/flask-praetorian>_ should
supply everything you need.
The flask-praetorian package can be used to:
All of this is provided in a very simple to configure and initialize flask
extension. Though simple, the security provided by flask-praetorian is strong
due to the usage of the proven security technology of JWT
and python's PassLib <http://pythonhosted.org/passlib/>_ package.
python versions 3.8+$ pip install flask-praetorianexample/basic.py <https://github.com/dusktreader/flask-praetorian/tree/master/example/basic.py>_The complete documentation can be found at the
flask-praetorian home page <http://flask-praetorian.readthedocs.io>_
FAQs
Strong, Simple, and Precise security for Flask APIs (using jwt)
We found that flask-praetorian demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
/Research
Malicious npm package impersonates Nodemailer and drains wallets by hijacking crypto transactions across multiple blockchains.
Security News
This episode explores the hard problem of reachability analysis, from static analysis limits to handling dynamic languages and massive dependency trees.
Security News
/Research
Malicious Nx npm versions stole secrets and wallet info using AI CLI tools; Socket’s AI scanner detected the supply chain attack and flagged the malware.