https://github.com/codegeek004/parkeasy-api

https://github.com/codegeek004/parkeasy-api

Last synced: about 1 year ago
JSON representation

• Host: GitHub
• URL: https://github.com/codegeek004/parkeasy-api
• Owner: codegeek004
• Created: 2024-12-10T13:48:46.000Z (over 1 year ago)
• Default Branch: main
• Last Pushed: 2025-03-22T10:25:18.000Z (over 1 year ago)
• Last Synced: 2025-03-22T11:25:47.170Z (over 1 year ago)
• Language: Python
• Size: 215 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          

# Security-Enhanced Django Project

This project demonstrates the implementation of multiple security features in a Django application, focusing on enhancing authentication, access control, and protection against common web attacks.

## Features Implemented

-   **Multi-Factor Authentication (MFA)**: Adds an extra layer of security by requiring multiple forms of verification.

-   **Captcha**: Prevents automated bots from accessing the application.

-   **OAuth**: Enables secure, token-based authentication using third-party providers.

-   **Single Sign-On (SSO)**: Allows users to authenticate once and access multiple applications.

-   **DDoS Protection**: Basic measures to detect and mitigate distributed denial-of-service attacks.

-   **"Remember Me" Functionality**: Allows users to stay logged in across sessions.

-   **Throttling and Rate Limiting**: Protects the API from excessive usage and abuse.

## Requirements

-   Python 3.x

-   Django

-   djangorestframework

-   django-axes (for DDoS protection)

-   django-simple-captcha

-   django-oauth-toolkit

-   django-allauth (for OAuth and SSO)

## Installation

1.  **Clone the repository**

```bash

git clone 

cd 

```

2.  **Create a virtual environment and activate it**

```bash

python3 -m venv venv

source venv/bin/activate  # On Windows, use venv\Scripts\activate

```

3.  **Install the dependencies**

```bash

pip install -r requirements.txt

```

## Running the Server

```bash

python manage.py runserver

```

By default, the server will start at `http://127.0.0.1:8000`.

## Usage

### Multi-Factor Authentication

-   Enabled during the login process with an OTP sent to the user's email or mobile.

### Captcha

-   Integrated into the login and registration forms to prevent automated access.

### OAuth and SSO

-   Configured with popular providers (Google, Facebook, etc.).

-   SSO enabled for internal applications.

### DDoS Protection

-   Basic protection implemented using request throttling and django-axes.

### "Remember Me"

-   Checkbox option in the login form to keep users logged in.

### Throttling and Rate Limiting

-   Configured for API endpoints using Django REST Framework's throttling classes.

## Testing the API

You can test the API using tools like:

-   [Postman](https://www.postman.com/)

-   `curl`

-   Browsable API interface at `http://127.0.0.1:8000/api/`

### Example Using Curl

```bash

curl -X GET http://127.0.0.1:8000

```

### Example Using Requests in Python

```python

import requests

response = requests.get("http://127.0.0.1:8000")

print(response.json())

```

## Note

-   Replace `'127.0.0.1:8000'` with your actual API URL if different.

-   Ensure the server is running before sending requests.

## License

This project is licensed under the MIT License.