You're reading from Mastering Flask Web and API Development Build and deploy production-ready Flask apps seamlessly across web, APIs, and mobile platforms

Product type Paperback

Published in Aug 2024

Publisher Packt

ISBN-13 9781837633227

Length 494 pages

Edition 1st Edition

Languages

Python

Tools

Flask

Concepts

Big Data

Author (1):

Sherwin John C. Tragura

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1:Learning the Flask 3.x Framework

2. Chapter 1: A Deep Dive into the Flask Framework FREE CHAPTER

3. Chapter 2: Adding Advanced Core Features

4. Chapter 3: Creating REST Web Services

5. Chapter 4: Utilizing Flask Extensions

6. Part 2:Building Advanced Flask 3.x Applications

7. Chapter 5: Building Asynchronous Transactions

8. Chapter 6: Developing Computational and Scientific Applications

9. Chapter 7: Using Non-Relational Data Storage

10. Chapter 8: Building Workflows with Flask

11. Chapter 9: Securing Flask Applications

12. Part 3:Testing, Deploying, and Building Enterprise-Grade Applications

13. Chapter 10: Creating Test Cases for Flask

14. Chapter 11: Deploying Flask Applications

15. Chapter 12: Integrating Flask with Other Tools and Frameworks

16. Index

Why subscribe?

17. Other Books You May Enjoy

Implementing user authentication and authorization

There is a strong foundation of extension modules that can secure API services from unwanted access, such as the Flask-HTTPAuth module. This has the updated utility classes for Basic, Digest, and Bearer token authentication implementation and the Authlib module for building OAuth2 authorization servers based on various grants. These two libraries are updated and reliable, and when combined with other safety procedures, such as password hashing and encryption, can provide baseline protection for Flask applications. Let us start identifying the steps in employing the Flask-HTTPAuth module in our application.

Utilizing the Flask-HTTPAuth module

After you have installed the Flask-HTTPAuth module and its extensions, it can provide its HTTPBasicAuth class to build Basic authentication, the HTTPDigestAuth class to implement Digest authentication, and the HTTPTokenAuth class for the Bearer token authentication scheme.