airlock

A lightweight wrapper providing Google OAuth2 integration, sessions, XSRF validators, and user management for App Engine apps.


Keywords
cloud, endpoints, google, app, engine, oauth2
License
MIT
Install
pip install airlock==0.0.13

Documentation

airlock

Airlock is a lightweight, web-security-concious wrapper for webapp2 on Google App Engine. It provides oauth2 integration for identity management with Google Accounts, sessions, and user management.

Comparison

Airlock is a drop-in replacement for several webapp2 and protorpc objects. Specifically, it wraps remote.Service, webapp2.WSGIApplication, and webapp2.RequestHandler to provide authentication and session features via oauth2 and the oauth2client library.

original airlock variant
protorpc.remote.Service airlock.Service
webapp2.RequestHandler airlock.Handler
webapp2.WSGIApplication airlock.WSGIApplication

User features

  • Oauth2 integration with Google Accounts (sign in and sign out).
  • Anonymous user/session support.

Security features

  • A standard configuration format for specifying the security characteristics of an application.
  • Provides a framework for setting the following headers:
    • Content security policy.
    • HSTS policy.
    • XSRF.

Usage

  1. Download client secrets.
  2. In appengine config, use airlock.set_config
  3. Use airlock's subclasses.
  4. Set up a User model.