django-magic-links
Installation
pip install django-magic-linksAdd URL patterns
# urls.py
from django.urls import path
urlpatterns = [
path('', include('magic_links.urls.www')),
path('/api/', include('magic_links.urls.api')),
...
]
Override settings as needed
# settings.py
DEFAULTS = {
# URLS for creating links, dict key corresponds to `source` when requesting link
'MAGIC_LINKS_URLS': {
'default': 'http://localhost:8000/auth/',
'ios': 'myapp://login/',
},
# Amount of time that tokens last, in seconds
'MAGIC_LINKS_EXPIRE_TIME': 15 * 60,
# Registers previously unseen aliases as new users.
'MAGIC_LINKS_CREATE_USER': True,
# The user's email field name
'MAGIC_LINKS_USER_EMAIL_FIELD_NAME': 'email',
# The email the callback token is sent from
'MAGIC_LINKS_EMAIL_FROM_ADDRESS': 'from@example.com',
# The email subject
'MAGIC_LINKS_EMAIL_SUBJECT': "Your Magic Link",
# A plaintext email message overridden by the html message. Takes one string.
'MAGIC_LINKS_EMAIL_PLAINTEXT_MESSAGE': "Follow this link to sign in: {link}",
# The email template name.
'MAGIC_LINKS_EMAIL_HTML_TEMPLATE_NAME': 'magic_link_email.html',
# Context Processors for Email Template
'MAGIC_LINKS_CONTEXT_PROCESSORS': [],
}
Example Usage
REST API
curl -X POST -d “email=drwho@tardis.com&source=ios” localhost:8000/api/auth/email/The user drwho@tardis.com receives an email
Follow this link to sign in: myapp://login/?token=$2b$12$Pc9ugN5DwsC3jNYwpfG.XOxUuwybmJu1HTvfpPCyGk/I3BkFLZDsq&email=drwho@tardis.com
At this point, the client can use the supplied token to request a DRF auth token
curl -X POST -d “email=drwho@tardis.com&token=$2b$12$Pc9ugN5DwsC3jNYwpfG.XOxUuwybmJu1HTvfpPCyGk/I3BkFLZDsq” localhost:8000/api/auth/token/
{
"token": "3d247ac9a67630932bb6b5e08cb24c0c7760f37a"
}WORK IN PROGRESS
Current
-
Django view auth
- Happy path verified
-
DRF token auth
- Request magic link
- Get auth token from link token
- Happy path verified
To Do
-
Non-happy path testing and error handling
-
Tests
