Flasksimpleauth

Latest version: v33.2

Safety actively analyzes 681844 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 11

33.2

- add JsonData section to tutorial.
- password manager refactoring
- add **experimental** support for _LDAP_ authentication.

33.1

- updated tutorial.
- improve recipes.
- improve documentation.
- improve optional parameter support.

33.0

- makes `FSA_AUTH` mandatory to declare the list of allowed schemes.
- requires _none_ authentication on `OPEN` routes, otherwise they are
turned into `AUTH`. (Should it rather be an error?).
- `AUTH` routes without effective authentication are turned into `CLOSE`.
- improve type name display on some errors.
- update tutorial.

32.0

- Add dependency on [`crypt_r`](https://github.com/fedora-python/crypt_r)
for _Python 3.13_ so that `passlib` works there too.
- Require that all used authentications are explicitely enabled from `FSA_AUTH`.
- Delay initialization after authentication schemes are registed.
- Check that authentication schemes exist while configuring.
- Simplify `password` authentication implementation.
- Restrict `auth` decorator parameter to `str` or `list[str]`.
- By default, no authentication scheme is enabled, instead of `httpd`.
- Update tutorial to mention `FSA_AUTH_DEFAULT`.
- Fix typos in documentation.

31.0

- Add _Python 3.13_ and _Pypy 3.10_ to CI.
- Given its lack of maintenance, remove the mandatory dependency to `passlib` for default `bcrypt` scheme by implementing the password check directly.
- Add support for password scheme `argon2` and `scrypt`.
- Add direct implementations for `plaintext`, `a85` and `b64`: the two later schemes are simple obfuscations proposed as _better_ very bad options over `plaintext`.
- Add support for `passlib` list of schemes.
- Add `FSA_AUTH_DEFAULT` to require a specific authentication scheme by default.

30.3

- Force `text/plain` on empty results, because it is most likely _not_ a valid whatever (json, html)…
- Update and extend demo with pydantic example.
- Update README.
- Allow mixing _JSON_ and _HTTP_ parameters.

Page 1 of 11

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.