authentication - How do I structure this medium sized flask application? -


using flask framework in python, application needs to:

  1. register , log in users (with either sqlite or postgres database)
  2. access specific google spreadsheet logged in user owns , output data in json format. i required have own authorization & authentication system

i having lot of trouble figuring out how structure application - directories , sub-directories should have?

i have done lot of playing around (about 1 months worth). using virtual environment don't know how test code either. in general, code runs have no idea how work really.** new flask.**

structuring app:

|app

|----run.py

|----config.py

|----database

|---------database.db

|----app

|---------views.py

|---------models.py

|---------forms.py

|---------extensions.py

|----templates

|---------....

|----static

|--------....

authorization / authentication: i have looked @ flask-login, flask-auth, flask-security. understand general idea not know how securely implement complete authorization & authentication system. 

app = flask(__name__) app.config.from_object(config) login_manager = loginmanager() login_manager.init_app(app)  def create_app():        db.init_app()     db.app = app     db.create_all()     return app  @app.route('/') def index():      #needs render homepage template  @app.route('/signup', methods = ['get', 'post']) def register():     form = signupform()     if request.method == 'get':         return render_template('signup.html', form=form)     elif request.method == 'post':         if form.validate_on_submit():             if user.query.filter_by(email=form.email.data).first():                 return "email exists"             else:                 newuser = user(form.email.data, form.password.data)                 db.session.add(newuser)                 db.session.commit()                 login_user(newuser)              return "new user created"     else:         return "form didn't validate"      return "signup"  @app.route('/login', methods = ['get', 'post']) def login():     form = signupform()      if request.method == 'get':         return render_template('login.html', form=form)     elif request.method == 'post':         if form.validate_on_submit():             user = user.query.filter_by(email=form.email.data).first()             if user:                 if user.password == form.password.data:                     login_user(user)                     return "you logged in"                 else:                     return "wrong password"             else:                 return "user doesnt exist"         else:             return "form did not validate"  @login_manager.user_loader def load_user(email):     return user.query.filter_by(email = email).first()  @app.route('/protected') @login_required def protected():     return "protected area logged in users only"  if __name__ == '__main__':     #app.create_app()     app.run(port=5000, host='localhost')` 
from flask_security import security, sqlalchemyuserdatastore, usermixin, rolemixin, login_required import os  # create app app = flask(__name__) #app.config['debug'] = true app.config['secret_key'] = ''  app.config['sqlalchemy_database_uri'] = 'sqlite:////' app.config['security_password_hash'] = 'sha512_crypt' app.config['security_password_salt'] = str(os.urandom(24)) # create database connection object db = sqlalchemy(app)  # define models roles_users = db.table('roles_users',     db.column('user_id', db.integer(), db.foreignkey('user.id')),     db.column('role_id', db.integer(), db.foreignkey('role.id')))  class role(db.model, rolemixin):     id = db.column(db.integer(), primary_key=true)      name = db.column(db.string(80), unique=true)      description = db.column(db.string(255))  class user(db.model, usermixin):     id = db.column(db.integer, primary_key=true)     email = db.column(db.string(255), unique=true)      password = db.column(db.string(255))     active = db.column(db.boolean())     confirmed_at = db.column(db.datetime())     roles = db.relationship('role', secondary=roles_users,  backref=db.backref('users', lazy='dynamic'))   user_datastore = sqlalchemyuserdatastore(db, user, role) security = security(app, user_datastore)  # create user test @app.before_first_request  def create_user():     db.create_all()     user_datastore.create_user(email='', password='')     db.session.commit()  @app.route('/')  @login_required  def home():     #password = encrypt_password('mypass')     #print verify_and_update_password('mypass', password)     return "hello"  if __name__ == '__main__':      app.run(debug=true, use_reloader=false)

** appreciate guidance!**

project structure:
if you're planning build larger flask application, should consider decomposing functionality blueprints.
official flask documentation has tutorial on how structure larger applications: http://flask.pocoo.org/docs/0.12/patterns/packages/

also, take @ hitchhiker's guide organizing project. has points: http://python-guide-pt-br.readthedocs.io/en/latest/writing/structure/

if you're designing rest api consider using flask-restful (which works nicely blueprints)


Comments

Post a Comment

Popular posts from this blog

node.js - Node js - Trying to send POST request, but it is not loading javascript content -

i have been trying send post request website, , has not been loading full site. i guessing problem node js not loading javascript content, executing it. can see javascript in response, though never loads content javascript files producing in html. what mean is, doesn't execute javascript. how make node js code overcome this, , wait the full website load? have tried native code, , "request' module, both producing same errors. if helps, don't need native javascript. modules fine. some code have tried (request module): var options = { method: 'post', uri: 'https://url', formdata: { 'email': 'email', 'prize': '0', 'transactional': 'on' }, headers: { /* 'content-type': 'application/x-www-form-urlencoded' */ // set automatically } }; rp(options) .then(function (body) { console.log(body) }) .catch(function (err) { console.log(err) }); when fetch content...
Read more

javascript - Replicate keyboard event with html button -

i have tried few ways make happen. have javascript pinball game uses keyboard keys controls. converting application touch screen display. workaround, hoping overlay buttons when clicked simulate keyboard strokes. have done research , sounds should work. using jquery v3.2.1 here things have tried far... html element: <input type="button" class="coil"></input> $('.coil').trigger({type: 'keydown', which: 40, keycode: 40}); with this, not errors, nothing happens. var coilkey = $('body').keydown(function(e) { switch (e.keycode) { case 40: break;} }) $('.coil').click(coilkey); this 1 returns error in console... ((jquery.event.special[handleobj.origtype] || (intermediate value)).handle || handleobj.handler).apply not function below javascript game engine handles key listeners... addkeylistener: function (keyandlistener) { this.keylisteners.push(keyandlistener); }, // gi...
Read more

javascript - Web audio api 5.1 surround example not working in firefox -

i've been playing lott lately web audio api on both firefox , chrome. few days ago started experiment surround set. when trying surround audio in web audio api came notice example works fine in chrome v59 not in firefox v54. // create web audio api context var audioctx = new (window.audiocontext || window.webkitaudiocontext)(); audioctx.destination.channelinterpretation = 'discrete'; audioctx.destination.channelcountmode = 'explicit'; audioctx.destination.channelcount = 6; var oscillators = []; var merger = audioctx.createchannelmerger(6); console.log(audioctx.destination, merger); //merger.channelinterpretation = 'discrete'; //merger.channelcountmode = 'explicit'; //merger.channelcount = 6; var addoscilator = function(channel, frequency) { var oscillator = audioctx.createoscillator(); oscillator.frequency.value = frequency; // value in hertz oscillator.connect(merger,0,channel); oscillator.start(); oscillators.push(o...
Read more