Flask HTTP Digest Authentication
Go to file
2023-10-08 22:20:16 +08:00
docs Advanced to version 0.7.0. 2023-10-08 22:20:16 +08:00
src/flask_digest_auth Advanced to version 0.7.0. 2023-10-08 22:20:16 +08:00
tests Revised the FlaskLoginTestCase test case to skip testing when Flask-Login 0.6.2 conflicts with Werkzeug 3. 2023-10-08 22:11:50 +08:00
.gitignore Revised the order in .gitignore. 2022-11-29 20:32:25 +08:00
.readthedocs.yaml Updated the Python version in the Read the Docs configuration. 2023-04-27 09:09:00 +08:00
LICENSE Added LICENSE, MANIFEST.in, pyproject.toml, README.rst, and setup.cfg as the starting project skeleton. 2022-11-23 18:07:00 +11:00
MANIFEST.in Replaced setup.cfg with pyproject.toml for the package settings, and rewrote the packaging rules in MANIFEST.in. 2023-04-05 23:09:44 +08:00
pyproject.toml Replaced the "Flask-Testing" package with the "httpx" package for testing, and retired the unused "flask_digest_auth.test" module. "Flask-Testing" is not maintained for more than 3 years, and is not compatible with Flask 3. 2023-10-08 22:06:20 +08:00
README.rst Simplified README.rst. 2023-04-23 22:43:56 +08:00

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> </head>

Flask HTTP Digest Authentication

Description

Flask-DigestAuth is an HTTP Digest Authentication implementation for Flask applications. It authenticates the user for the protected views.

HTTP Digest Authentication is specified in RFC 2617.

Why HTTP Digest Authentication?

HTTP Digest Authentication has the advantage that it does not send thee actual password to the server, which greatly enhances the security. It uses the challenge-response authentication scheme. The client returns the response calculated from the challenge and the password, but not the original password.

Log in forms has the advantage of freedom, in the senses of both the visual design and the actual implementation. You may implement your own challenge-response log in form, but then you are reinventing the wheels. If a pretty log in form is not critical to your project, HTTP Digest Authentication should be a good choice.

Flask-DigestAuth works with Flask-Login. Log in protection can be separated with the authentication mechanism. You can create protected Flask modules without knowing the actual authentication mechanisms.

Installation

You can install Flask-DigestAuth with pip:

pip install Flask-DigestAuth

You may also install the latest source from the Flask-DigestAuth GitHub repository.

pip install git+https://github.com/imacat/flask-digestauth.git

Documentation

Refer to the documentation on Read the Docs.

Change Log

Refer to the change log.

Authors

imacat
2022/11/23
</html>