Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Making SSO with django rest framework

Tags:

angular

django

django-rest-framework

single-sign-on

cas

We have two apps App1 with domain www.app1.com and App2 with domain www.app2.com. Backend of both apps is api based using django-rest-framework. On frontend side we are using Angular2. Both apps had their different user base but now we decided to merge the user base and want a single authentication service.

Both apps needs to use eachother's functionality. And we want seemless experience for user. If a user a singed in one app. It should not be login from other app.

I did some research and find out that it can be achieved with SSO. Here is the link to the relevant stack-overflow question (Implementing SSO with django). I also find many libraries. Most of them are very old so can't use legacy code.

Following are the libraries that I have tried and why these couldn't fit into my problem.

  1. Server with django-mama-cas and client with django-cas-ng. This worked perfectly but only for session based apps and my client apps are rest-api based.
  2. Another one is django-rest-framework-sso. This is year old library and also I am not sure how will sure the jwt between angular apps.

So can you please share how to implement SSO with rest-fraemwork ?

like image 415
Adil Malik Avatar asked Dec 01 '17 10:12

Adil Malik

1 Answers

What you can do is take django-rest-auth project https://github.com/Tivix/django-rest-auth and run it as a central authentication server on let's say app-3 and make calls to it for authentication from app-1 and app-2.

It would require you to consolidate your user DB and have it served from one restful auth service. You would still need to write a restful cas client thou that would process the authentication for you, Or you can just repurpose the ng-cas code for this, All it does is it takes the ServiceTicket returend by the mama-cas server and creates a session in django auth based on it and optinoally creates a user as a stub in the client server db.

Another alternative is to make mama-cas restful. All mama cas does is creates a ServiceTicket model object on succesful login and sends it over to the client which consumes 'service' and 'ticket' params and creates authentication session. Authentiation session is created whether you are restful or not, it's part of django architecture to provide authentication.

What we did at likalo to consolidate our services was take the django-mama-cas server and made it semi restful. It's on my road map to make it 100% restful using this approach.

Hope this helps...

like image 91
PhilippeT Avatar answered Sep 28 '22 09:09

PhilippeT
Sign in to Comment

Related questions

Intermittently can't connect to mysql on AWS RDS (Error 2003)
Adding headers to Django EmailMultiAlternatives
JSpdf working in Internet Explorer but not working in Chrome
Error when reverting an auto-generated migration for renaming a table in Django
Create an instance from serializer without persisting it to db
Docker NGINX Proxy not Forwarding Websockets
Django test IntegrityError in fixture teardown
Django: switch language of message sent from admin panel
Q objects and the '&' operator in django
Add fields to Django ModelForm that aren't in the model
Edit profile with ModelForm and UserProfile
manage.py not present in Django project
Multiple fields to the same DB column
Django Test Complaining about Fixture
Using Grunt with Django: Best Workflow
OperationalError: no such table: django_content_type when using unittest
Django dynamic form, formsets with HTML array
Got AttributeError when attempting to get a value for field 'status_code'
Django detecting redundant migrations repetitively
Consume kafka messages from django app

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!