Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/mattrobenolt/django-sudo
Extra security for your sensitive pages
https://github.com/mattrobenolt/django-sudo
Last synced: 10 days ago
JSON representation
Extra security for your sensitive pages
- Host: GitHub
- URL: https://github.com/mattrobenolt/django-sudo
- Owner: mattrobenolt
- License: bsd-3-clause
- Created: 2014-03-18T09:35:33.000Z (over 10 years ago)
- Default Branch: main
- Last Pushed: 2021-06-18T00:14:19.000Z (over 3 years ago)
- Last Synced: 2024-10-12T19:24:30.503Z (about 1 month ago)
- Language: Python
- Homepage:
- Size: 120 KB
- Stars: 281
- Watchers: 7
- Forks: 27
- Open Issues: 4
-
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.rst
- License: LICENSE
- Security: docs/security/index.rst
Awesome Lists containing this project
- awesome-django-security - Django Sudo
README
# django-sudo
[![](https://travis-ci.org/mattrobenolt/django-sudo.svg?branch=master)](https://travis-ci.org/mattrobenolt/django-sudo) [![](https://coveralls.io/repos/mattrobenolt/django-sudo/badge.png?branch=master)](https://coveralls.io/r/mattrobenolt/django-sudo?branch=master)
> Sudo mode is an extra layer of security for your most sensitive pages.
> This is an implementation of GitHub's [Sudo Mode](https://github.com/blog/1513-introducing-github-sudo-mode) for [Django](https://www.djangoproject.com/).## What is this for?
`django-sudo` provides an extra layer of security for after a user is already logged in. Views can
be decorated with `@sudo_required`, and then a user
must re-enter their password to view that page. After verifying their password, that user has
elevated permissions for the duration of `SUDO_COOKIE_AGE`. This duration is independent of the
normal session duration allowing short elevated permission durations, but retain long user sessions.## Installation
```console
$ pip install django-sudo
```## Compatibility
* Django 1.9-1.11
* Python 2.7, 3.6-3.7## Resources
* [Documentation](https://django-sudo.readthedocs.io/)
* [Security](https://django-sudo.readthedocs.io/en/latest/security/index.html)
* [Changelog](https://django-sudo.readthedocs.io/en/latest/changelog/index.html)