Welcome to Flask PASETO Extended

Flask-PASETO-Extended provides following three classes to use PASETO (Platform-Agnostic Security Tokens) for Flask applications:

• PasetoIssuer

  • This class can be used for issuing public (signed) PASETO tokens. It is suitable for using PASETO as API tokens.

• PasetoVerifier

  • This class can be used for verifying public (signed) PASETO tokens. It is suitable for using PASETO as API tokens.

• PasetoCookieSessionInterface

  • Flask (Flask.sessions) stores session information as a Cookie value. By using this class, you can serialize the session information as a local (encrypted and then MACed) PASETO.

• PasetoLoginManager

  • By using this class together with Flask-Login, you can use a local PASETO for remember-me tokens which is also encoded into a Cookie value.

For encoding/decoding PASETO, we have adopted PySETO, which is a PASETO/PASERK implementation and supports all of PASETO versions (v4, v3, v2 and v1) and purposes (local and public).

Index

• Installation
• Usage Examples
  • PasetoIssuer
  • PasetoVerifier
  • PasetoCookieSessionInterface
  • PasetoLoginManager
• API Reference
  • PasetoCookieSessionInterface
  • PasetoLoginManager
  • PasetoIssuer
  • PasetoVerifier
  • Token
  • paseto_required()
  • FlaskPasetoError
  • EncodeError
  • DecodeError
• Changes
  • Unreleased
  • Version 0.5.1
  • Version 0.5.0
  • Version 0.4.2
  • Version 0.4.1
  • Version 0.4.0
  • Version 0.3.3
  • Version 0.3.2
  • Version 0.3.1
  • Version 0.3.0
  • Version 0.2.0
  • Version 0.1.1
  • Version 0.1.0