{"id":27862580,"url":"https://github.com/krptn/krypton","last_synced_at":"2025-05-04T20:32:53.536Z","repository":{"id":58531066,"uuid":"352330847","full_name":"krptn/krypton","owner":"krptn","description":"Data encryption at rest and IAM for Python","archived":false,"fork":false,"pushed_at":"2025-04-29T23:16:08.000Z","size":4846,"stargazers_count":49,"open_issues_count":12,"forks_count":4,"subscribers_count":0,"default_branch":"master","last_synced_at":"2025-04-30T00:23:14.449Z","etag":null,"topics":["authentication","cryptography","django","encryption","fido2","fips","flask","iam","python","security","totp","webauthn"],"latest_commit_sha":null,"homepage":"https://www.krptn.dev/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/krptn.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2021-03-28T13:02:39.000Z","updated_at":"2025-03-26T21:44:18.000Z","dependencies_parsed_at":"2023-09-25T23:13:20.349Z","dependency_job_id":"bc9768e7-1032-4ee5-ba3b-fba6e3f84958","html_url":"https://github.com/krptn/krypton","commit_stats":null,"previous_names":[],"tags_count":47,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/krptn%2Fkrypton","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/krptn%2Fkrypton/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/krptn%2Fkrypton/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/krptn%2Fkrypton/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/krptn","download_url":"https://codeload.github.com/krptn/krypton/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":251605603,"owners_count":21616480,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["authentication","cryptography","django","encryption","fido2","fips","flask","iam","python","security","totp","webauthn"],"created_at":"2025-05-04T20:31:11.633Z","updated_at":"2025-05-04T20:32:53.515Z","avatar_url":"https://github.com/krptn.png","language":"Python","readme":"![Apache-2.0](https://img.shields.io/pypi/l/Krptn)\n[![Last Release status](https://github.com/krptn/krypton/actions/workflows/release.yml/badge.svg?event=release)](https://github.com/krptn/krypton/actions/workflows/release.yml)\n![codecov](https://codecov.io/gh/krptn/krypton/branch/master/graph/badge.svg?token=AQPVJXQLRP)\n\nWe also have a [homepage](https://www.krptn.dev/) and [documentation](https://docs.krptn.dev/index.html) for you to check out.\n\n# Krptn\n\n```shell\npip install krptn\n```\n\n## What problem do we solve?\n\n**We all love Django and other web frameworks!** However, their primary focus is creating websites - not implementing secure storage for user data. Django makes it easy to store data. While it hashes the password, it does not encrypt user data for you. In case of a data breach, malicious actors could access any data from the DB. Encryption is left to the developer...\n\n**Wouldn't it be nice if encryption would also be handled?** Perhaps it could be handled in a **[way that keys are derived from credentials](https://www.krptn.dev/news/security-model/)**, such that, without the user entering credentials, not even the database administrator can read it?! This is exactly what we do!\n\n**We also handle user authentication, including MFA, and passwordless authentication.**\n\n**Krptn also runs in the same server instance** as your web app. So you don't have to host anything new. Just install the extension for Python.\n\n**To prove that such is possible, we have a [Flask](https://github.com/krptn/flaskExample) and [Django](https://github.com/krptn/djangoExample) example on GitHub.**\n\n## What do we do exactly?\n\nWe are building a user authentication and access management system (IAM) with **[data encryption at rest derived from credentials](https://www.krptn.dev/news/security-model/)**. It is available as a python extension module. However we have certain [limitations](https://www.krptn.dev/news/limitations/).\n\nHow we achieve this?\n\n- All data is encrypted (any data can be requested by the developer to be secured)\n- Only the appropriate users' credentials can unlock the cryptosystem (this protects you from server-side attacks)\n\nThis gives you *[security from encryption](https://www.krptn.dev/news/security-model/)* without ever needing to even notice it! It protects you from server side attacks.\n\nHere is an example usage:\n\n```python\nfrom krypton.auth.users import userModel\n\nmodel = userModel.standardUser(None)\nmodel.saveNewUser(\"Test_UserName\", \"Test_Password\")\nmodel.data.email = \"test@example.com\" # The email will be encrypted, and securely stored\n```\n\n![Krptn Visualisation](https://www.krptn.dev/krptnDiagram.webp)\n\n## Try it out\n\nQuickly install the package with pip for Python\u003e3.9:\n\n```shell\npip install krptn\n```\n\nHave a look at our [User Authentication documentation](https://docs.krptn.dev/README-USER-AUTH.html), and create some users.\n\nReady to integrate it into your WebApp? Have a look at some of our integration's available with [Django and Flask](https://docs.krptn.dev/README.html#integration-with-web-frameworks)!\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkrptn%2Fkrypton","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkrptn%2Fkrypton","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkrptn%2Fkrypton/lists"}