django-urlcrypt 0.1.6

安装

1. easy_install django-urlcrypt或pip install django-urlcrypt

2. 将urlcrypt添加到INSTALLED_APPS

3. 在settings.py中，将'urlcrypt.auth_backends.UrlCryptBackend'添加到AUTHENTICATION_BACKENDS

4. 在url.py中添加：

   (r'^r/', include('urlcrypt.urls')),
   

5. （推荐）如果您希望在令牌上使用rsa加密，请使用ssh-keygen-t rsa -f <path to private key>生成一个私钥（如果您还没有），然后将私钥的路径设置为urlcrypt_private_key_path。rsa加密使令牌更长，但更安全。需要pycrypto库。

用法

在视图中：

from django.core.urlresolvers import reverse
from urlcrypt import lib as urlcrypt

token = urlcrypt.generate_login_token(user, reverse('message_inbox'))
encoded_url = reverse('urlcrypt_redirect', args=(token,))
# yours will look slightly different because you have a different SECRET_KEY, but approximately
# encoded_url == /r/TkNJBkNFAghDWkdFGPUAQEfcDUJfEBIREgEUFl1BQ18IQkdDUUcPSh4ADAYAWhYKHh8KHBsHEw

在模板中：

{% load urlcrypt_tags %}
<a href="{% encoded_url user message_inbox %}">click me to log in as {{user.username}} and go to {% url message_inbox %}</a>

高级库用法：

from urlcrypt import lib as urlcrypt

message = {
    'url': u'/users/following/',
    'user_id': '12345'
}

token = urlcrypt.encode_token((message['user_id'], message['url']))
decoded_message = urlcrypt.decode_token(token, ('user_id', 'url', 'timestamp'))

>>> print token
TkNJBkNFAghDWkdFGPUAQEfcDUJfEBIREgEUFl1BQ18IQkdDUUcPSh4ADAYAWhYKHh8KHBsHEw

>>> print decoded_message
{'url': '/users/following/', 'user_id': '12345'}

设置

• ^{tt10}$
  • default: ^{tt11}$
  • If urlcrypt authentication fails, redirects to ^{tt10}$.
• ^{tt13}$
  • default: ^{tt14}$
  • The number of urlcrypt requests a unique visitor is allowed to make per minute.
• ^{tt15}$
  • default: ^{tt16}$
  • The path to the RSA private key file in PEM format. If ^{tt16}$, RSA encryption will not be used.
• ^{tt18}$
  • default: ^{tt19}$
  • Set ^{tt18}$ to True when running the urlcrypt tests.

学分

David Ziegler

Christopher Hesse