Skip to content
/ Django-Full-Auth Public

This Django authentication tutorial demonstrates how to implement secure JWT authentication with cookie handling using the djoser library. The tutorial integrates JWT tokens with cookies, ensuring a stateless and secure authentication process. Additionally, SendGrid is used to handle email communications like account activation and password reset.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Yug3ne/Django-Full-Auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
api_auth
api_auth
 
 
users
users
 
 
.env.local
.env.local
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
manage.py
manage.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Django-Full-Auth

This Django authentication tutorial demonstrates how to implement secure JWT authentication with cookie handling using the djoser library. The tutorial integrates JWT tokens with cookies, ensuring a stateless and secure authentication process. Additionally, SendGrid is used to handle email communications like account activation and password reset.

Django JWT Authentication with Custom Cookie Handling

This repository demonstrates how to implement a custom JWT authentication flow in Django, focusing on token storage in secure HTTP-only cookies. It leverages the djoser library to manage user authentication while customizing token handling for improved security.

Features:

  • Custom JWT Authentication: Custom views to obtain, refresh, and verify JWT tokens.
  • Token Handling with Cookies: Secure storage of access and refresh JWT tokens in cookies with HTTP-only, Secure, and SameSite attributes.
  • Automatic Token Management: The backend handles token storage and renewal, simplifying frontend token management.
  • SendGrid Integration: Email functionality for account activation and password reset using SendGrid.

Key Components:

  • CustomTokenObtainPairView: Handles user login and generates JWT tokens, setting them in cookies.
  • CustomTokenRefreshView: Refreshes the JWT access token using the refresh token stored in cookies.
  • CustomTokenVerifyView: Verifies the JWT access token from cookies to ensure the user's authentication.
  • CustomProviderAuthView: Handles social logins and generates JWT tokens. setting them in cookies
  • Secure Cookie Settings: Configurable settings for cookies, including SameSite, HTTP-only, and Secure attributes.

Installation:

  1. Clone the repository.
  2. Install dependencies: pip install -r requirements
  3. Copy .env.local to .env cp .env.local .env Set up environment variables for API keys, like SENDGRID_API_KEY and FROM_EMAIL, in .env and Django settings.
  4. Run migrations: python manage.py migrate
  5. Start the Django server: python manage.py runserver
  6. SendGrid Integration: This project uses SendGrid to handle email notifications, including account activation and password reset emails. resource https://www.twilio.com/en-us/blog/email-activation-django-sendgrid

Helpful Resources:

About

This Django authentication tutorial demonstrates how to implement secure JWT authentication with cookie handling using the djoser library. The tutorial integrates JWT tokens with cookies, ensuring a stateless and secure authentication process. Additionally, SendGrid is used to handle email communications like account activation and password reset.

Topics

django authentication-backend drf-jwt

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages