Overview
Explore external authentication methods for Django projects in this conference talk from EuroPython 2015. Learn how to integrate enterprise-level user account management and group systems with Django applications using directory services like FreeIPA and Active Directory, or federated protocols such as SAML. Discover techniques for delegating authentication and identity operations to frontend servers, and examine how to extend Django's RemoteUserMiddleware and RemoteUserBackend to work with enterprise identity management systems. Gain insights into using OS-level components like SSSD for web applications and setting up federation. Delve into topics including authentication on single URLs, consuming additional user attributes in Django, group-based authorization, and populating REMOTE_USER_GROUP_+. Perfect for developers looking to implement robust external authentication solutions in Django projects for large organizations or enterprise environments.
Syllabus
Intro
Situation
Problem statement
Simple setup
Authentication in frontend HTTP server
Limits of RemateuserMiddleware
Authentication on single URL
Additional user attributes
Consuming attributes in Django
Group-based authorization
Populating REMOTE_USER_GROUP_+
Conclusion
Taught by
EuroPython Conference