Flask Web Development

  1. User Authentication and Authorization
    1. Authentication Concepts
      1. Authentication vs Authorization
        1. Authentication Methods
          1. Session-Based Authentication
            1. Token-Based Authentication
              1. Multi-Factor Authentication
              2. Password Security
                1. Password Hashing
                  1. Hash Functions
                    1. Salt Generation
                      1. Password Hashing Libraries
                        1. Werkzeug Security
                          1. bcrypt
                            1. Argon2
                          2. Password Policies
                            1. Password Storage Best Practices
                              1. Password Reset Mechanisms
                              2. Session Management
                                1. Flask Session Object
                                  1. Session Configuration
                                    1. Session Security
                                      1. Session Cookies
                                        1. Session Hijacking Prevention
                                          1. Session Fixation Prevention
                                          2. Session Storage Options
                                            1. Session Lifetime Management
                                            2. Flask-Login Extension
                                              1. Installation and Setup
                                                1. User Model Requirements
                                                  1. UserMixin Class
                                                    1. Required Methods
                                                      1. is_authenticated
                                                        1. is_active
                                                          1. is_anonymous
                                                            1. get_id
                                                          2. Login Manager Configuration
                                                            1. User Loader Function
                                                              1. Login Process
                                                                1. Login Forms
                                                                  1. User Verification
                                                                    1. login_user() Function
                                                                    2. Logout Process
                                                                      1. logout_user() Function
                                                                        1. Session Cleanup
                                                                        2. Route Protection
                                                                          1. @login_required Decorator
                                                                            1. Anonymous User Handling
                                                                            2. User Registration
                                                                              1. Registration Forms
                                                                                1. User Creation
                                                                                  1. Email Verification
                                                                                  2. Remember Me Functionality
                                                                                    1. Remember Me Tokens
                                                                                      1. Token Security
                                                                                        1. Token Expiration
                                                                                        2. Current User Access
                                                                                          1. current_user Proxy
                                                                                            1. User Context
                                                                                          2. Authorization and Access Control
                                                                                            1. Role-Based Access Control (RBAC)
                                                                                              1. Role Definition
                                                                                                1. Permission Systems
                                                                                                  1. Role Assignment
                                                                                                  2. Permission Decorators
                                                                                                    1. View-Level Authorization
                                                                                                      1. Template-Level Authorization
                                                                                                        1. Resource-Based Authorization
                                                                                                        2. Advanced Authentication Topics
                                                                                                          1. OAuth Integration
                                                                                                            1. Social Login
                                                                                                              1. API Authentication
                                                                                                                1. JWT Tokens
                                                                                                                  1. Single Sign-On (SSO)

                                                                                                                Previous

                                                                                                                8. Structuring Larger Applications

                                                                                                                Go to top

                                                                                                                Next

                                                                                                                10. Building RESTful APIs