book

Flask Web Development, 2nd Edition

by Miguel Grinberg

March 2018

Intermediate to advanced

312 pages

7h 22m

English

O'Reilly Media, Inc.

Book available

Read now

Unlock full access

Who This Book Is ForHow This Book Is OrganizedHow to Work with the Example CodeUsing Code ExamplesConventions Used in This BookO’Reilly SafariHow to Contact UsAcknowledgmentsAdditional Thanks for the Second Edition
Creating the Application DirectoryVirtual EnvironmentsCreating a Virtual Environment with Python 3Creating a Virtual Environment with Python 2Working with a Virtual EnvironmentInstalling Python Packages with pip
InitializationRoutes and View FunctionsA Complete ApplicationDevelopment Web ServerDynamic RoutesDebug ModeCommand-Line OptionsThe Request-Response CycleApplication and Request ContextsRequest DispatchingThe Request ObjectRequest HooksResponsesFlask Extensions
The Jinja2 Template EngineRendering TemplatesVariablesControl StructuresBootstrap Integration with Flask-BootstrapCustom Error PagesLinksStatic FilesLocalization of Dates and Times with Flask-Moment
ConfigurationForm ClassesHTML Rendering of FormsForm Handling in View FunctionsRedirects and User SessionsMessage Flashing
SQL DatabasesNoSQL DatabasesSQL or NoSQL?Python Database FrameworksDatabase Management with Flask-SQLAlchemyModel DefinitionRelationshipsDatabase OperationsCreating the TablesInserting RowsModifying RowsDeleting RowsQuerying RowsDatabase Use in View FunctionsIntegration with the Python ShellDatabase Migrations with Flask-MigrateCreating a Migration RepositoryCreating a Migration ScriptUpgrading the DatabaseAdding More Migrations
Email Support with Flask-MailSending Email from the Python ShellIntegrating Emails with the ApplicationSending Asynchronous Email
Project StructureConfiguration OptionsApplication PackageUsing an Application FactoryImplementing Application Functionality in a BlueprintApplication ScriptRequirements FileUnit TestsDatabase SetupRunning the Application

Authentication Extensions for FlaskPassword SecurityHashing Passwords with WerkzeugCreating an Authentication BlueprintUser Authentication with Flask-LoginPreparing the User Model for LoginsProtecting RoutesAdding a Login FormSigning Users InSigning Users OutUnderstanding How Flask-Login WorksTesting LoginsNew User RegistrationAdding a User Registration FormRegistering New UsersAccount ConfirmationGenerating Confirmation Tokens with itsdangerousSending Confirmation EmailsAccount Management
Database Representation of RolesRole AssignmentRole Verification
Profile InformationUser Profile PageProfile EditorUser-Level Profile EditorAdministrator-Level Profile EditorUser Avatars
Blog Post Submission and DisplayBlog Posts on Profile PagesPaginating Long Blog Post ListsCreating Fake Blog Post DataRendering in PagesAdding a Pagination WidgetRich-Text Posts with Markdown and Flask-PageDownUsing Flask-PageDownHandling Rich Text on the ServerPermanent Links to Blog PostsBlog Post Editor
Database Relationships RevisitedMany-to-Many RelationshipsSelf-Referential RelationshipsAdvanced Many-to-Many RelationshipsFollowers on the Profile PageQuerying Followed Posts Using a Database JoinShowing Followed Posts on the Home Page
Database Representation of CommentsComment Submission and DisplayComment Moderation
Introduction to RESTResources Are EverythingRequest MethodsRequest and Response BodiesVersioningRESTful Web Services with FlaskCreating an API BlueprintError HandlingUser Authentication with Flask-HTTPAuthToken-Based AuthenticationSerializing Resources to and from JSONImplementing Resource EndpointsPagination of Large Resource CollectionsTesting Web Services with HTTPie
Obtaining Code Coverage ReportsThe Flask Test ClientTesting Web ApplicationsTesting Web ServicesEnd-to-End Testing with SeleniumIs It Worth It?
Logging Slow Database PerformanceSource Code Profiling
Deployment WorkflowLogging of Errors During ProductionCloud DeploymentThe Heroku PlatformPreparing the ApplicationTesting with Heroku LocalDeploying with git pushDeploying an UpgradeDocker ContainersInstalling DockerBuilding a Container ImageRunning a ContainerInspecting a Running ContainerPushing Your Container Image to an External RegistryUsing an External DatabaseContainer Orchestration with Docker ComposeCleaning Up Old Containers and ImagesUsing Docker in ProductionTraditional DeploymentsServer SetupImporting Environment VariablesSetting Up Logging
Using an Integrated Development Environment (IDE)Finding Flask ExtensionsGetting HelpGetting Involved with Flask

Content preview from Flask Web Development, 2nd Edition

Chapter 8. User Authentication

Most applications need to keep track of who their users are. When users connect with an application, they authenticate with it, a process by which they make their identity known. Once the application knows who the user is, it can offer a customized experience.

The most commonly used method of authentication requires users to provide a piece of identification, which is either their email address or username, and a secret only known to them, which is called the password. In this chapter, the complete authentication system for Flasky is created.

Authentication Extensions for Flask

There are many excellent Python authentication packages, but none of them do everything. The user authentication solution presented in this chapter uses several packages and provides the glue that makes them work well together. This is the list of packages that will be used, and what they’re used for:

Flask-Login: Management of user sessions for logged-in users
Werkzeug: Password hashing and verification
itsdangerous: Cryptographically secure token generation and verification

In addition to authentication-specific packages, the following general-purpose extensions will be used:

Flask-Mail: Sending of authentication-related emails
Flask-Bootstrap: HTML templates
Flask-WTF: Web forms

Password Security

The safety of user information stored in databases is often overlooked during the design of web applications. If an attacker is able to break into your server ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Mastering Flask Web Development - Second Edition

Publisher Resources

ISBN: 9781491991725Errata Page

Flask Web Development, 2nd Edition

by Miguel Grinberg

Chapter 8. User Authentication

Authentication Extensions for Flask

Password Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

You might also like

Mastering Flask Web Development - Second Edition

Designing Data-Intensive Applications

React - The Complete Guide (Includes Hooks, React Router, and Redux) - Second Edition

Learning Go, 2nd Edition

Publisher Resources

Chapter 8. User Authentication

Authentication Extensions for Flask

Password Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,and much more.

You might also like

Mastering Flask Web Development - Second Edition

Designing Data-Intensive Applications

React - The Complete Guide (Includes Hooks, React Router, and Redux) - Second Edition

Learning Go, 2nd Edition

Publisher Resources

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.