https://github.com/asauber/session-armor-django

SessionArmor is a Cookie-less authentication protocol for HTTP
https://github.com/asauber/session-armor-django

Last synced: 3 months ago
JSON representation

SessionArmor is a Cookie-less authentication protocol for HTTP

• Host: GitHub
• URL: https://github.com/asauber/session-armor-django
• Owner: asauber
• License: other
• Created: 2016-07-20T15:45:57.000Z (almost 9 years ago)
• Default Branch: master
• Last Pushed: 2017-09-21T16:49:12.000Z (over 7 years ago)
• Last Synced: 2025-01-01T15:21:35.608Z (5 months ago)
• Language: Python
• Homepage:
• Size: 53.7 KB
• Stars: 1
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE.txt

Awesome Lists containing this project

README

        
# Session Armor Protocol, Django Middleware Implementation

Copyright (C) 2015 - 2016 Andrew Sauber

## Installation

`python setup.py install`

## Usage

Add `'sessionarmor_django.middleware.SessionArmorMiddleware'` to your

`MIDDLEWARE_CLASSES` setting.

Add `STRICT_S_ARMOR = True` to your settings.py if you would like to enforce

that all requests support Session Armor. It's not necessary to include this

setting if you would like Session Armor to be optional.  Django's

PermissionDenied exception will be raised for those clients who do not support

Session Armor. This generates a 403 response for the client. If you would like

to customize the 403 response to indicate that Session Armor is required, see

https://docs.djangoproject.com/en/1.9/ref/views/#the-403-http-forbidden-view.

## Development

`pip install -e .`

## License

Licensed under the Affero GPLv3. This is to discourage you from using it in production until it's production-ready. ;)

A more permissive license may be used in the future.