Django Rest Framework Library to use Auth0 authentication
Project description
===== djangorestframework-auth0
Migrate from 0.2.1 to >0.4.5
If you're using the version 0.2.1 -or older- from this package, you'll need to update your Auth0 settings
From this
AUTH0 = {
'AUTH0_CLIENT_ID': '<YOUR_AUTH0_CLIENT_ID>', # make sure it's the same string that aud attribute in your payload provides
'AUTH0_CLIENT_SECRET': '<YOUR_AUTH0_CLIENT_SECRET>',
'CLIENT_SECRET_BASE64_ENCODED': True, # default to True, if you're Auth0 user since December, maybe you should set it to False
...
}
To this
AUTH0 = {
'CLIENTS': {
'default': {
'AUTH0_CLIENT_ID': '<YOUR_AUTH0_CLIENT_ID>', #make sure it's the same string that aud attribute in your payload provides
'AUTH0_CLIENT_SECRET': '<YOUR_AUTH0_CLIENT_SECRET>',
'CLIENT_SECRET_BASE64_ENCODED': True, # default to True, if you're Auth0 user since December, maybe you should set it to False,
'AUTH0_ALGORITHM': 'HS256', # HS256 or RS256
'PUBLIC_KEY': <YOUR_AUTH0_CERTIFICATE>, # used only for RS256
}
},
...
}
If you wanna use RS256, please follow the sample project
Library to simply use Auth0 token authentication in DRF within djangorestframework-jwt
This library let you to login an specific user based on the JWT Token returned by Auth0 Javascript libraries
Detailed documentation will be in the "docs" directory.
Installation
- Using
pipinstall the library cloning the repository with following command:
pip install rest_framework_auth0
Quick start
- Add "django.contrib.auth to INSTALLED_APPS settings like this:
INSTALLED_APPS = [
...
'django.contrib.auth',
...
]
This will allow us to login as an specific user as well as auto-creating users when they don't exist
- Add "rest_framework_auth0" to your INSTALLED_APPS after
rest_framework_jwtsetting like this:
INSTALLED_APPS = [
...,
'rest_framework_jwt',
'rest_framework_auth0',
]
- Add
Auth0JSONWebTokenAuthenticationin your DEFAULT_AUTHENTICATION_CLASSES located at settings.py from your project:
REST_FRAMEWORK = {
...,
'DEFAULT_AUTHENTICATION_CLASSES': (
...,
'rest_framework_auth0.authentication.Auth0JSONWebTokenAuthentication',
),
}
- Add your AUTH0_CLIENT_SECRET and AUTH0_CLIENT_ID in your settings.py file -must be the same secret and id than the frontend App-:
AUTH0 = {
'CLIENTS': {
'default': {
'AUTH0_CLIENT_ID': '<YOUR_AUTH0_CLIENT_ID>', #make sure it's the same string that aud attribute in your payload provides
'AUTH0_CLIENT_SECRET': '<YOUR_AUTH0_CLIENT_SECRET>',
'CLIENT_SECRET_BASE64_ENCODED': True, # default to True, if you're Auth0 user since December, maybe you should set it to False
}
},
'AUTH0_ALGORITHM': 'HS256', # default used in Auth0 apps
'JWT_AUTH_HEADER_PREFIX': 'JWT', # default prefix used by djangorestframework_jwt
'AUTHORIZATION_EXTENSION': False, # default to False
'USERNAME_FIELD': 'sub', # default username field in auth0 token scope to use as token user
}
- Add the
AuthorizationHeader to all of your REST API request, prefixing JWT to your token:
Authorization: JWT <AUTH0_GIVEN_TOKEN>
-
Use the decorator
@token_requiredin all views you want to protect (not_ready_yet) -
That's it
Multiple Clients - Multiples App - One API
If you wanna to use multiple Auth0 App and/or Clients -for example if you're creating an open API, you can add as much as you want in the AUTH0.CLIENTS settings parameter
AUTH0 = {
'CLIENTS': {
'default': {
'AUTH0_CLIENT_ID': '<YOUR_AUTH0_CLIENT_ID>', #make sure it's the same string that aud attribute in your payload provides
'AUTH0_CLIENT_SECRET': '<YOUR_AUTH0_CLIENT_SECRET>',
'CLIENT_SECRET_BASE64_ENCODED': True, # default to True, if you're Auth0 user since December, maybe you should set it to False
}
'web': {
'AUTH0_CLIENT_ID': '<YOUR_AUTH0_CLIENT_ID>', #make sure it's the same string that aud attribute in your payload provides
'AUTH0_CLIENT_SECRET': '<YOUR_AUTH0_CLIENT_SECRET>',
'CLIENT_SECRET_BASE64_ENCODED': True, # default to True, if you're Auth0 user since December, maybe you should set it to False
}
'mobile': {
'AUTH0_CLIENT_ID': '<YOUR_AUTH0_CLIENT_ID>', #make sure it's the same string that aud attribute in your payload provides
'AUTH0_CLIENT_SECRET': '<YOUR_AUTH0_CLIENT_SECRET>',
'CLIENT_SECRET_BASE64_ENCODED': True, # default to True, if you're Auth0 user since December, maybe you should set it to False
}
},
...
}
In order to select one of them when the authentication is needed -a POST request, for example- you need to add a header called Client-Code -by default, but you can customize it-. The names of the clients are case sensitive.
Sample project
A sample project can be found here
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for rest_framework_auth0-0.5.0.tar.gz
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 0d523aa3c0923dc460440b675e735035ba98a2850494ea3358cfcc852488863e |
|
| MD5 | 628ab28a10664eeb6d8e57903c64fa06 |
|
| BLAKE2b-256 | a3db2df903003a44624b65de4ce323a57b1287bff169c25a655fd7fdb1cfe783 |
Hashes for rest_framework_auth0-0.5.0-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 8f563fb6930b6b1d3c20da965e4d43f65fb8fdffd11a366559d08d1fc5faae2d |
|
| MD5 | 3d0749c77c2ce6bf90e5dc26c1b50567 |
|
| BLAKE2b-256 | 17d0088c97ff3dd3f76a18197183fedb96bdfe588896ed86ae35da918bec1443 |
