Flask HTTP Digest Authentication
Go to file
2023-04-23 22:43:56 +08:00
docs Added the change log. 2023-04-23 22:36:31 +08:00
src/flask_digest_auth Added the "VERSION" constant to the "flask_digest_auth" module for the package version, and revised "pyproject.toml" and "conf.py" to read the version from it. 2023-04-23 22:15:11 +08:00
tests Added the DIGEST_AUTH_REALM configuration variable as the recommended way to set the authentication realm. Changed the default realm from an empty string to "Login Required". 2023-01-06 00:20:40 +08:00
.gitignore Revised the order in .gitignore. 2022-11-29 20:32:25 +08:00
.readthedocs.yaml Replaced the requirements.txt in the docs directory with the Read the Docs configuration file. 2023-04-05 23:52:43 +08:00
LICENSE Added LICENSE, MANIFEST.in, pyproject.toml, README.rst, and setup.cfg as the starting project skeleton. 2022-11-23 18:07:00 +11:00
MANIFEST.in Replaced setup.cfg with pyproject.toml for the package settings, and rewrote the packaging rules in MANIFEST.in. 2023-04-05 23:09:44 +08:00
pyproject.toml Added the change log. 2023-04-23 22:36:31 +08:00
README.rst Simplified README.rst. 2023-04-23 22:43:56 +08:00

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> </head>

Flask HTTP Digest Authentication

Description

Flask-DigestAuth is an HTTP Digest Authentication implementation for Flask applications. It authenticates the user for the protected views.

HTTP Digest Authentication is specified in RFC 2617.

Why HTTP Digest Authentication?

HTTP Digest Authentication has the advantage that it does not send thee actual password to the server, which greatly enhances the security. It uses the challenge-response authentication scheme. The client returns the response calculated from the challenge and the password, but not the original password.

Log in forms has the advantage of freedom, in the senses of both the visual design and the actual implementation. You may implement your own challenge-response log in form, but then you are reinventing the wheels. If a pretty log in form is not critical to your project, HTTP Digest Authentication should be a good choice.

Flask-DigestAuth works with Flask-Login. Log in protection can be separated with the authentication mechanism. You can create protected Flask modules without knowing the actual authentication mechanisms.

Installation

You can install Flask-DigestAuth with pip:

pip install Flask-DigestAuth

You may also install the latest source from the Flask-DigestAuth GitHub repository.

pip install git+https://github.com/imacat/flask-digestauth.git

Documentation

Refer to the documentation on Read the Docs.

Change Log

Refer to the change log.

Authors

imacat
2022/11/23
</html>