Skip to content

Latest commit

 

History

History
48 lines (36 loc) · 2.49 KB

README.md

File metadata and controls

48 lines (36 loc) · 2.49 KB

FastAPI PASETO Auth

Tests Coverage Status PyPI version Downloads

Documentation: https://chloe-ko.github.io/fastapi-paseto-auth

Source Code: https://github.com/Chloe-ko/fastapi-paseto-auth


FastAPI extension that provides PASETO (Plastform-Agnostic SEcurity TOkens) Auth support
PASETO are a simpler, yet more secure alternative to JWTs.

If you were familiar with flask-jwt-extended or fastapi-jwt-auth this extension suitable for you, as this is forked from fastapi-jwt-auth which in turn used flask-jwt-extended as motivation

Features

  • Access tokens and refresh tokens
  • Freshness Tokens
  • Revoking Tokens
  • Support for adding custom claims to Tokens
  • Built-in Base64 Encoding of Tokens
  • Custom token types

Installation

The easiest way to start working with this extension with pip

pip install fastapi-paseto-auth

Roadmap

  • Support for WebSocket authorization

FAQ

  • Where's support for tokens in cookies?
    I mostly forked fastapi-jwt-auth because I needed a library to use for authentication using PASETO tokens in my private FastAPI Application. Which is why I only kept the functionality that I personally required.
    Personally, I'm not a fan of saving data in cookies, and cookie support made up a big part of the code which just didn't make sense for me to bother adapting.
    Hence, I likely will not be implementing support for storing PASETO tokens in cookies unless there is a considerable amount of people wanting it.
    However, I will gladly accept PRs implementing tokens in cookies if someone else wants to implement it.

License

This project is licensed under the terms of the MIT license.