Mastodawn

covracer May 16, 2024

@lemeteore do you want .html, .js, .css, .png files also protected? If so, consider a REMOTE_USER style proxy covering static files and #Django, maybe passing the whole JWT instead of just username. With #nginx+#vouch, I think it'd be `idtoken: X-Vouch-IdP-IdToken`.

https://github.com/biobuddies/allowedflare has examples of admin site and #djangorestframwork auth from JWT.

My wishlist: configuring a popular app like allauth, not rolling my own; FLOSS like #keycloak, #kanidm replacing Cloudflare Access+Okta

GitHub - biobuddies/allowedflare

Contribute to biobuddies/allowedflare development by creating an account on GitHub.

GitHub

Mikela Jun 22, 2023

messing around with my code that builds a rest api using #djangorestframwork and a schema adapter pattern and its wild how bad the drf internals are specifically when you look at how build_nested_field works and know in your heart of hearts looking at NestedSerializer that this is the exact moment the OP went "yep this was a terrible idea"