Packt+ | Advance your knowledge in tech

All Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Django Design Patterns and Best Practices. - Second Edition

You're reading from Django Design Patterns and Best Practices. - Second Edition

Product type Book

Published in May 2018

Publisher Packt

ISBN-13 9781788831345

Pages 282 pages

Edition 2nd Edition

Languages

Concepts

Design Patterns

Author (1):

Arun Ravindran

Table of Contents (21) Chapters

Title Page

Copyright and Credits

PacktPub.com

Contributors

Preface

1. Django and Patterns

2. Application Design

3. Models

4. Views and URLs

5. Templates

6. Admin Interface

7. Forms

8. Working Asynchronously

9. Creating APIs

10. Dealing with Legacy Code

11. Testing and Debugging

12. Security

13. Production-Ready

1. Python 2 Versus Python 3

2. Other Books You May Enjoy

Leave a review - let other readers know what you think

Index

SQL injection

SQL injection is the second most common vulnerability of web applications, after XSS. The attack involves entering malicious SQL code into a query that gets executed on the database. It could result in data theft, by dumping database content, or the destruction of data, say, by using the DROP TABLE command.

If you are familiar with SQL, then you can understand the following piece of code; it looks up an email address based on the given username:

name = request.GET['user'] 

sql = "SELECT email FROM users WHERE username = '{}';".format(name)

At first glance, it might appear that only the email address corresponds to the username mentioned as the GET parameter will be returned. However, imagine if an attacker entered ' OR '1'='1' in the form field, then the SQL code would be as follows:

SELECT email FROM users WHERE username = '' OR '1'='1';

Since this WHERE clause will always be true, the emails of all the users of your application will be returned. This can be a serious leak of...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $15.99/month. Cancel anytime}

Authors (1)

Arun Ravindran

Arun Ravindran is an avid speaker and blogger who has been tinkering with Django since 2007 for projects ranging from intranet applications to social networks. He is a long-time open source enthusiast and Python developer. His articles and screencasts have been invaluable to the rapidly growing Django community. He is currently a developer member of the Django Software Foundation. Arun is also a movie buff and loves graphic novels and comics.

See other products by Arun Ravindran

Other recommended products

Related to this chapter

Building Django 2.0 Web Applications

Building Django 2.0 Web Applications

Learn how to build web apps in production with Django by following three example projects. First, you'll build a clone of IMDB. Next, you'll build a clone of Stack Overflow. Lastly, you'll build a clone of MailChimp. By the end of book, you'll have all the knowledge required to build your own projects with Django 2.0!

Apr 2018 13 hours 36 minutes

Web Development with Django

Web Development with Django

Django is a popular Python-based framework for web application development. Like Python, Django is easy for beginners to learn and enables constant progress. This book will help aspiring web developers gain the skills to use Django to develop robust web apps.

Feb 2021 27 hours 32 minutes

Django 3 By Example

Django 3 By Example

Django 3 By Example, Third Edition, explores key Django features and best practices that every Python web developer should be aware of. This third edition is fully updated for Django 3 and a new chapter on Django Channels for real-time features has been added. Much more than just a reference guide, this book shows you how Django works in the real world. This book also shows you best practices and how to integrate other popular technologies, such as Redis, Celery, or Memcached into your Django projects.

Mar 2020 18 hours 56 minutes

Django 2 by Example

Django 2 by Example

Django is a powerful Python web framework designed to develop web applications quickly. If you want to learn about the entire process of developing professional web applications with Django, then this book is for you. This book will walk you through the creation of four professional Django projects, teaching you how to solve common problems and implement best practices.

May 2018 17 hours 32 minutes

Django 3 Web Development Cookbook

Django 3 Web Development Cookbook

This recipe-based guide is intended to solve common problems in building web apps with Django 3 and Python. Starting from setting up your environment, you will come across actionable solutions for common tasks like building models, forms, views, data management, through to testing, deploying, and securing your web apps.

Mar 2020 20 hours 16 minutes

Django 2 Web Development Cookbook

Django 2 Web Development Cookbook

Django is a framework designed to balance rapid web development with high performance. It handles high levels of user traffic and interaction, integrates with a variety of databases, and collects and processes data in real time. This book follows a task-based approach to guide you through developing with the Django 2.1 framework, starting with setting up and configuring Docker containers and a virtual environment for your project.

Oct 2018 18 hours 8 minutes

Mastering Flask Web Development

Mastering Flask Web Development

Flask is a popular Python framework known for its lightweight and modular design, so it’s easy to transform it to the web framework that you need with few extensions without weighing it down. This guide will take you on a complete tour of Flask environment and lead you to build production-ready application.

Oct 2018 11 hours 4 minutes

Learn Python Programming

Learn Python Programming

Learn Python Programming is a quick, thorough, and practical introduction to Python - an extremely flexible and powerful programming language that can be applied to many disciplines.

Jun 2018 16 hours 56 minutes

Learn Python Programming

Learn Python Programming

Learn Python Programming is a quick, thorough, and practical introduction to Python - an extremely flexible and powerful programming language that can be applied to many disciplines.

Jun 2018 16 hours 56 minutes

Personalised recommendations for you

Based on your interests and search pattern

C++ Programming for Linux Systems

C++ Programming for Linux Systems

This book covers the essential system programming tools and helps you explore the features of C++20. It emphasizes important details to maintain code quality and tackle everyday challenges of developing software for high performance, optimization, and more.

Sep 2023 9 hours 36 minutes

Discover advanced programming techniques, the latest features of C++17 and C++20, and best practices for memory management, debugging, testing, and large-scale application design with Expert C++. Ideal for experienced developers advancing to proficient programmers and building professional-grade C++ applications.

Aug 2023 20 hours 8 minutes

iOS 17 Programming for Beginners

iOS 17 Programming for Beginners

iOS 17 Programming for Beginners, Eighth Edition is your comprehensive guide to learning the art of iOS app development. Whether you dream of creating the next chart-topping app or simply want to enhance your programming skills, this book is your trusted companion on this exciting journey.

Oct 2023 20 hours 8 minutes

Developer Career Masterplan

Developer Career Masterplan

Written by industry experts that have spent the last 20+ years helping developers grow their career path towards senior developer positions and beyond. This book provides a comprehensive guide, sharing examples and stories from their global careers. By the end, you’ll have the knowledge to create a clear career progression plan as a technical professional.

Sep 2023 10 hours 20 minutes

Refactoring with C#

Refactoring with C#

In Refactoring with C#, you’ll explore the process of safely refactoring modern .NET code using Visual Studio features, advanced unit tests, AI assistance, and custom Roslyn analyzers.

Nov 2023 14 hours 28 minutes

Python Real-World Projects

Python Real-World Projects

Amplify your developer journey by curating a dynamic project portfolio that outshines traditional resumes. Delve into the Python realm through immersive projects, mastering core concepts while constructing comprehensive modules and applications. From data acquisition prowess to impactful data visualization, Python Real-World Projects arms you with essential skills to beat the competition.

Sep 2023 15 hours 56 minutes

The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI enables developers to master MVVM principles and effectively apply them to .NET MAUI. This book uses real-life examples and covers complex problems to help you successfully apply MVVM with .NET MAUI to confidently develop robust and high-performing cross-platform apps.

Nov 2023 12 hours 52 minutes

Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

Aug 2023 15 hours 16 minutes

Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

Aug 2023 15 hours 16 minutes

Quantum Computing Algorithms

Quantum Computing Algorithms

The book emphasizes intuitive ideas behind quantum algorithms in ways that other books don’t cover, striking a careful balance between no math and too much math. To get the most from this book, you should be comfortable with basic algebra and writing simple computer code. No prior understanding of quantum physics is needed to get started.

Sep 2023 11 hours 24 minutes

Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

Nov 2023 50 hours 30 minutes

Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

Nov 2023 50 hours 30 minutes