68dd972bfa
Add more secure password storage via salt value and hmac
2012-07-18 13:27:30 -04:00
1c606a242a
Adjust state
2012-07-16 19:40:34 -04:00
d5c6e4eb58
Update example/test app
2012-07-16 19:11:18 -04:00
f170cb434c
Use a stateful object instead of arbitrary assignment of extension on app object
2012-07-16 19:07:19 -04:00
e570997ea0
Remove flag, its meant for testing
2012-07-13 12:26:58 -04:00
4337534437
Script usage additions
2012-07-13 12:24:51 -04:00
dcdfb4d3e7
Add configurable http auth realm and optional realm specification in http_auth_required decorator
2012-07-12 14:16:54 -04:00
dfcb3cdcc6
Add customizable unauthorized URL. Fixes #23
2012-07-12 12:47:21 -04:00
5e1d18c9e8
Changed token auth a bit, including the use of itsdangerous. Also added JSON authentication feature
2012-07-11 16:31:21 -04:00
b9a6a9c5a8
Use itsdangerous for activation and password reset tokens so they do not need to be stored in the database
2012-07-11 15:06:54 -04:00
2ed0ea48e6
Add trackable option and make extra features default to off/False to minimize about of application setup to get started
2012-07-09 18:57:43 -04:00
24cd4938a5
correct roles_* decorator signature expectations
...
Having multiple RoleNeed objects in a Permission does not require
all to be satisfied in order to .can(), but will return True if
any are present. This makes the previous roles_required logic more
elegant for roles_accepted. roles_required decorator needs to check
all permissions individually and return only if all permissions exist
2012-06-22 00:15:43 -05:00
0a8ee87319
Try using an older version of mongoengine during build to get python 2.5 tests to pass
2012-06-20 16:51:09 -04:00
7f2a05c364
Try and fix an issue with python 2.5
2012-06-20 16:35:36 -04:00
c123e32ddc
decorators for basic http auth and token auth
2012-06-14 18:04:14 -04:00
09aa7e113c
Heavy work on confirmation and reset
2012-05-22 18:08:38 -04:00
67b806860e
Fixes #9
2012-05-16 12:27:43 -04:00
4e7663079b
Refactor some methods
2012-05-14 18:58:43 -04:00
4c1a16e2ee
Added register signal, some testing utils and basic confirmation
2012-05-11 18:15:46 -04:00
2b587f7047
Starting a large refactor and adding confirmation abilities
2012-05-11 13:23:42 -04:00
9b513ce4ab
Polish
2012-05-01 11:19:46 -04:00
ed7beb529a
First commit of refactored code and removed default models. Now meant to provide models from app level, not within Flask-Security
2012-04-30 19:34:04 -04:00
5a7f4dff47
Initial idea for specifying a user account mixin for user model
2012-03-27 14:27:12 -04:00
e239216d92
Added a few handy commands for Flask-Script to create users and add/remove roles. Also refactored the datastore a bit with appropriate methods
2012-03-09 16:31:05 -05:00
1a6cd10d09
Changed configuration values to use the prefix "SECURITY_" instead of a nested dictionary for easier overidding
2012-03-08 23:02:39 -05:00
ac29081b74
Refactor example
2012-03-08 17:16:49 -05:00
ebe807b87b
MongoEngine datastore completed. Also refactored model classes to use a mixin
2012-03-08 17:06:23 -05:00
f5db44d0a1
First code commit
2012-03-08 16:03:53 -05:00
Matt Wright