16
Authentication of RESTful API on Django Cobalt [email protected]

Auth of restful_api

Embed Size (px)

Citation preview

Page 1: Auth of restful_api

Authentication of RESTful API on Django

[email protected]

mailto:[email protected]
Page 2: Auth of restful_api

About me

● Cobalt Chang

● From Application Software, Network & Communication Solutions BG, Nexcom International Co., Ltd.

● Software RD of an industry computer company?

– Production testing?

Page 3: Auth of restful_api

What we do?

● AngularJS + Django

● Version control, Test spec

● Gitlab, Continuous Integration(CI)

● Docker

● Kanban, Lean startup in the enterprise

● LinkedIn

– https://www.linkedin.com/in/tun-yu-chang-7965279a

https://www.linkedin.com/in/tun-yu-chang-7965279a
Page 4: Auth of restful_api

Outline

● Introdustion to RESTful API

● Packages for building API

– Django REST Framework

– Djoser● Packages for documenting API

– Django REST Swagger

– Sphinx (not in this talking)● Demo

● Appendix

http://www.django-rest-framework.org/
https://github.com/sunscrapers/djoser
https://github.com/marcgibbons/django-rest-swagger
Page 5: Auth of restful_api

●RESTful API - REST

● REST, Representational State Transfer

– Resource● Uniform Resource Identifier (URI)

– Representation● html, xml, json, etc.

– State Transfer● well-defined operations

Page 6: Auth of restful_api

●RESTful API - RESTful

● The formal REST constraints are

– Client–server

– Stateless

– Cacheable

– Layered system

– Uniform interface● It's RESTful

Page 7: Auth of restful_api

●RESTful API - APIs

● For example, RESTful Web APIs

– base URI, such as http://example.com/resources/

– often JSON resources, but can be others

– standard HTTP methods

– hypertext links to reference state

Resource GET PUT POST DELETE

Collection URI, such as http://api.example.com/resources/

List Replace Create Delete

Element URI, such as http://api.example.com/resources/item17

Retrieve Replace / Create

Create Delete

https://en.wikipedia.org/wiki/Representational_state_transfer#Applied_to_web_services

https://en.wikipedia.org/wiki/Representational_state_transfer#Applied_to_web_services
Page 8: Auth of restful_api

●Django REST Framework

● Django REST framework is a powerful and flexible toolkit for building Web APIs

● http://www.django-rest-framework.org/

http://www.django-rest-framework.org/
Page 9: Auth of restful_api

●Djoser

● REST implementation of Django authentication system

● https://github.com/sunscrapers/djoser

https://github.com/sunscrapers/djoser
Page 10: Auth of restful_api

● pip install djoser

● Configure INSTALLED_APPS

● Configure urls.py

Page 11: Auth of restful_api

● Authentication

– HTTP basic authentication

– Token based authentication● Features

– Register a new user

– Activate the user

– Send email to set new password

Page 12: Auth of restful_api

●Django REST Swagger

● An API documentation generator for Swagger UI and Django REST Framework

● https://github.com/marcgibbons/django-rest-swagger

https://github.com/marcgibbons/django-rest-swagger
Page 13: Auth of restful_api

● pip install django-rest-swagger

● Configure INSTALLED_APPS

● Configure urls.py

Page 14: Auth of restful_api

Demo @github

https://github.com/cobaltchang/auth_of_restful_api
Page 15: Auth of restful_api

Appendix

● Similar projects on DRF

– django-rest-auth

https://github.com/Tivix/django-rest-auth

– django-rest-framework-jwt

https://github.com/GetBlimp/django-rest-framework-jwt

– ...

https://github.com/Tivix/django-rest-auth
https://github.com/GetBlimp/django-rest-framework-jwt
Page 16: Auth of restful_api

Appendix

● Other API Creations

– Django-tastypie

– Piston

– ...● https://www.djangopackages.com/grids/g/api/

https://www.djangopackages.com/grids/g/api/

EXPERIENCE AIESEC AUTH

EXPERIENCE AIESEC AUTH

Documents
Auth forte application

Auth forte application

Documents
Security Testing (Auth.)

Security Testing (Auth.)

Documents
Power and Auth

Power and Auth

Documents
istal.v15i0 - auth

istal.v15i0 - auth

Documents
Computers & Education - auth

Computers & Education - auth

Documents
Oracle Ext Auth

Oracle Ext Auth

Documents
Vega Conzalez - auth

Vega Conzalez - auth

Documents
Lion Auth (1 of 2)

Lion Auth (1 of 2)

Technology
Auth Manager SP4

Auth Manager SP4

Documents
AUTH practice

AUTH practice

Documents
Adaptive Ranking of Web Pages - auth

Adaptive Ranking of Web Pages - auth

Documents
Scanned Document - auth

Scanned Document - auth

Documents
abstract book - auth

abstract book - auth

Documents
Dev objecttives-2015 auth-auth-fine-grained-slides

Dev objecttives-2015 auth-auth-fine-grained-slides

Technology
istal.v13i0 - auth

istal.v13i0 - auth

Documents
Ion Auth Docs.pdf

Ion Auth Docs.pdf

Documents
st.v0i4 - auth

st.v0i4 - auth

Documents
Scholl of Biology, AUTH

Scholl of Biology, AUTH

Education
Additional Work Auth

Additional Work Auth

Documents
FRAGMENTA - auth

FRAGMENTA - auth

Documents
Economic Development + Auth

Economic Development + Auth

Documents
EngReport Auth

EngReport Auth

Documents
Chapter IX - AUTH

Chapter IX - AUTH

Documents
Graphical pwd auth

Graphical pwd auth

Documents
Auth Scorecard

Auth Scorecard

Documents
119764860 dx-auth

119764860 dx-auth

Education
poster mn-auth

poster mn-auth

Technology
istal.v8i0 - auth

istal.v8i0 - auth

Documents
Web Auth Config

Web Auth Config

Documents