starlette-csrf

Starlette middleware implementing Double Submit Cookie technique to mitigate CSRF

MIT License

Downloads
15K
Stars
61
Committers
2
View Code on GitHub View on X
Ecosystems: FastAPI

Bot releases are hidden (Show)

starlette-csrf -

Published by frankie567 over 2 years ago

Improvements

  • Rewrite as a pure ASGI middleware, without BaseHTTPMiddleware as it's now deprecated.
  • Bump dependencies:
    • starlette >=0.14.2,<0.21.0
starlette-csrf -

Published by frankie567 over 2 years ago

Bug fixes and improvements

  • Bump dependencies:
    • starlette >=0.14.2,<0.20.0
    • itsdangerous >=2.0.1,<3.0.0
starlette-csrf -

Published by frankie567 over 2 years ago

Fixes and improvements

  • Put submitted CSRF token retrieval logic in a separate method _get_submitted_csrf_token for easier overloading.
starlette-csrf -

Published by frankie567 over 2 years ago

Bug fixes and improvements

  • Bump dependencies:
    • starlette >=0.14.2,<0.19.0
starlette-csrf -

Published by frankie567 almost 3 years ago

New features

  • The error response logic is now in its own separate method to ease overloading in case you need a custom error response. [Documentation]

Improvements

  • Bump packages:
    • starlette >=0.14.2,<0.18.0
starlette-csrf -

Published by frankie567 about 3 years ago

New features

  • Allow to exempt some routes from CSRF protection following Regex patterns. Thanks @lsapan 🎉

Improvements

  • Bump packages:
    • starlette >=0.14.2,<0.17.0
    • itsdangerous ==2.0.1
Package Rankings
Top 6.5% on Pypi.org
Badges
Extracted from project README
build codecov PyPI version Downloads
Related Projects
fastapi-jwt-auth3

JWT authentication in FastAPI with ease

07 Jun 2024 2
flake8-fastapi

Flake8 FastAPI - Avoid simple FastAPI mistakes ~opinionated~ 🤓

01 Jun 2021 45
imia

An authentication library for Starlette and FastAPI.

04 Aug 2021 98
fastapi-auth-middleware

Lightweight auth middleware for FastAPI that just works. Fits most auth workflows with only a few...

31 Jan 2022 80
python-sdk

Python plugins for the Authup authentication and authorization framework

22 Dec 2022 4
fastapi

FastAPI framework, high performance, easy to learn, fast to code, ready for production

08 Dec 2018 73,985
fastapi-alembic-sqlmodel-async

This is a project template which uses FastAPI, Pydantic 2.0, Alembic and async SQLModel as ORM. I...

06 Mar 2022 962
fastapi-starter

A FastAPI based low code starter/boilerplate: SQLAlchemy 2.0 (async), Postgres, React-Admin, pyte...

19 Aug 2021 424
fastapi-best-practices

FastAPI Best Practices and Conventions we used at our startup

09 Aug 2022 7,032
fastapi-react

🚀 Cookiecutter Template for FastAPI + React Projects. Using PostgreSQL, SQLAlchemy, and Docker

21 Mar 2020 2,201
secure

Lightweight modern Python library to add security headers (CSP, HSTS, etc.) to Django, Flask, Fas...

27 Nov 2018 785
starlette-context

Middleware for Starlette that allows you to store and access the context data of a request. Can b...

01 Nov 2019 442
starlette_exporter

Prometheus exporter for Starlette and FastAPI

26 Oct 2019 300
fastapi-csrf-jinja

fastapi-csrf-jinja is a CSRF middleware for FastAPI applications that supports tokens in both hea...

05 Jun 2024 0
fastapi-users

Ready-to-use and customizable users management for FastAPI

05 Oct 2019 4,554