django-trusted-devices 1.1__tar.gz

django_trusted_devices-1.1/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 Jakhongir Ganiev
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

django_trusted_devices-1.1/PKG-INFO

@@ -0,0 +1,277 @@
+Metadata-Version: 2.4
+Name: django-trusted-devices
+Version: 1.1
+Summary: Secure and manage trusted login devices for Django users
+Author-email: Jakhongir Ganiev <contact@jakhongir.dev>
+License: MIT
+Keywords: django,trusted devices,user security,sessions,login,djangorestframework
+Classifier: Development Status :: 3 - Alpha
+Classifier: Framework :: Django
+Classifier: Framework :: Django :: 4.2
+Classifier: Framework :: Django :: 5.0
+Classifier: Framework :: Django :: 5.1
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Requires-Python: >=3.13
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: django<5.3,>=4.2
+Requires-Dist: djangorestframework>=3.14.0
+Requires-Dist: djangorestframework-simplejwt>=5.5.0
+Requires-Dist: drf-yasg>=1.21.10
+Requires-Dist: httpx>=0.28.1
+Provides-Extra: docs
+Requires-Dist: mkdocs; extra == "docs"
+Requires-Dist: mkdocs-material; extra == "docs"
+Provides-Extra: dev
+Requires-Dist: black>=25.1.0; extra == "dev"
+Requires-Dist: build>=1.2.2.post1; extra == "dev"
+Requires-Dist: flake8>=7.2.0; extra == "dev"
+Requires-Dist: isort>=6.0.1; extra == "dev"
+Requires-Dist: pytest>=8.3.5; extra == "dev"
+Requires-Dist: pytest-cov>=6.1.1; extra == "dev"
+Requires-Dist: pytest-django>=4.11.1; extra == "dev"
+Requires-Dist: twine>=6.1.0; extra == "dev"
+Dynamic: license-file
+
+# 🔐 Django Trusted Device
+
+A plug-and-play Django app that adds **trusted device management** to your API authentication system using
+`djangorestframework-simplejwt`. Automatically associates tokens with user devices, tracks login locations,
+and enables per-device control over access and session management.
+
+---
+[![Docs](https://img.shields.io/badge/docs-view-green?style=for-the-badge&logo=readthedocs)](https://ganiyevuz.github.io/django-trusted-devices/)
+
+
+## 🚀 Features
+
+* 🔑 **JWT tokens** include a unique `device_uid`
+* 🌍 **Auto-detect IP, region, and city** via [ipapi.co](https://ipapi.co)
+* 🛡️ **Per-device session tracking** with update/delete restrictions
+* 🔄 **Custom** `TokenObtainPair`, `TokenRefresh`, and `TokenVerify` views
+* 🚪 **Logout unwanted sessions** from the device list
+* 🧼 **Automatic cleanup**, optional global control rules
+* 🧩 **API-ready** – supports DRF out of the box
+* ⚙️ **Fully customizable** via `TRUSTED_DEVICE` Django settings
+* 🚫 **Rejects refresh/verify** from unknown or expired devices
+
+---
+
+## 📦 Installation
+
+```bash
+pip install django-trusted-device
+```
+
+Add to your `INSTALLED_APPS`:
+
+```python
+INSTALLED_APPS = [
+    ...
+    'trusted_devices',
+    'rest_framework_simplejwt.token_blacklist',
+]
+```
+
+Run migrations:
+
+```bash
+python manage.py migrate
+```
+
+---
+
+## ⚙️ Configuration
+
+Customize behavior in `settings.py`:
+
+```python
+TRUSTED_DEVICE = {
+    "DELETE_DELAY_MINUTES": 60 * 24 * 7,  # 7 days
+    "UPDATE_DELAY_MINUTES": 60,           # 1 hour
+    "ALLOW_GLOBAL_DELETE": True,
+    "ALLOW_GLOBAL_UPDATE": True,
+}
+```
+
+---
+
+## 🧩 Usage
+
+
+## 🔐 SimpleJWT configuration
+
+Replace default SimpleJWT serializers with TrustedDevice serializers.:
+
+```python
+from datetime import timedelta
+
+REST_FRAMEWORK = {
+    'DEFAULT_AUTHENTICATION_CLASSES': (
+        'trusted_devices.authentication.TrustedDeviceAuthentication',
+    ),
+}
+
+SIMPLE_JWT = {
+    "ACCESS_TOKEN_LIFETIME": timedelta(minutes=60),
+    "REFRESH_TOKEN_LIFETIME": timedelta(days=30),
+    "AUTH_HEADER_TYPES": ("Bearer",),
+    "TOKEN_OBTAIN_SERIALIZER": 'trusted_devices.serializers.TrustedDeviceTokenObtainPairSerializer',
+    "TOKEN_REFRESH_SERIALIZER": 'trusted_devices.serializers.TrustedDeviceTokenRefreshSerializer',
+    "TOKEN_VERIFY_SERIALIZER": 'trusted_devices.serializers.TrustedDeviceTokenVerifySerializer',
+}
+
+```
+
+### 🔐 Custom Token Views
+
+Replace the default SimpleJWT views with:
+
+```python
+from trusted_devices.views import (
+    TrustedDeviceTokenObtainPairView,
+    TrustedDeviceTokenRefreshView,
+    TrustedDeviceTokenVerifyView,
+)
+
+urlpatterns = [
+    path('api/token/', TrustedDeviceTokenObtainPairView.as_view(), name='token_obtain_pair'),
+    path('api/token/refresh/', TrustedDeviceTokenRefreshView.as_view(), name='token_refresh'),
+    path('api/token/verify/', TrustedDeviceTokenVerifyView.as_view(), name='token_verify'),
+]
+```
+
+---
+
+### 📡 Device Management API
+
+Use the provided `TrustedDeviceViewSet`:
+
+```python
+from trusted_devices.views import TrustedDeviceViewSet
+
+router.register(r'trusted-devices', TrustedDeviceViewSet, basename='trusted-device')
+```
+
+Endpoints:
+
+* `GET /trusted-devices` — List all trusted devices
+* `DELETE /trusted-devices/{device_uid}` — Delete a device
+* `PATCH /trusted-devices/{device_uid}` — Update device permissions
+
+---
+
+## 👤 Device Model
+
+Each trusted device includes:
+
+* `device_uid`: Unique UUID
+* `user_agent`: Browser or device string
+* `ip_address`: IP address
+* `country`, `region`, `city`: Geolocation (via `ipapi.co`)
+* `last_seen`, `created_at`: Timestamps
+* `can_delete_other_devices`, `can_update_other_devices`: Optional privileges
+
+---
+
+## 🧠 How It Works
+
+1. During login, a `device_uid` is generated and embedded in the token.
+2. Clients use that token (with `device_uid`) for refresh/verify.
+3. Each request is linked to a known device.
+4. Users can manage or restrict their devices via API or Admin.
+
+---
+
+## 🧪 Testing Locally
+
+```bash
+# 🧩 Create and activate a uv-managed virtual environment
+uv venv
+source .venv/bin/activate  # Windows: .venv\Scripts\activate
+
+# 📦 Install the package in editable mode with dev extras
+uv pip install -e ".[dev]"
+
+# 🧪 Run the test suite
+pytest
+```
+
+---
+
+## 🧱 Dependencies
+
+* Django
+* Django REST Framework
+* djangorestframework-simplejwt
+* [ipapi.co](https://ipapi.co) (for IP geolocation)
+
+---
+
+## 🗃️ Model Snapshot
+
+| Field                      | Purpose             |
+| -------------------------- | ------------------- |
+| `device_uid`               | UUID primary key    |
+| `user_agent`, `ip_address` | Device fingerprint  |
+| `country / region / city`  | Geo‑lookup          |
+| `last_seen / created_at`   | Activity timestamps |
+| `can_update_other_devices` | Granular permission |
+| `can_delete_other_devices` | Granular permission |
+
+---
+
+## 🤝 Collaboration & Contributing
+
+We love community contributions! To collaborate:
+
+1. **Fork** the repo and create a feature branch:
+
+   ```bash
+   git checkout -b feature/my-amazing-idea
+   ```
+
+2. **Follow code style** – run:
+
+   ```bash
+   make lint  # runs flake8, isort, black
+   ```
+
+3. **Write & run tests**:
+
+   ```bash
+   pytest
+   ```
+
+4. **Commit** with clear messages and open a **Pull Request**.
+   GitHub Actions will lint + test your branch automatically.
+
+---
+
+### 🗣️ Discussions & Issues
+
+* 💡 Questions / ideas → [GitHub Discussions](https://github.com/ganiyevuz/django-trusted-devices/discussions)
+* 🐛 Bugs / feature requests → [GitHub Issues](https://github.com/ganiyevuz/django-trusted-devices/issues)
+
+---
+
+### 🛠 Maintainer Workflow
+
+* PRs require at least one approval and passing CI
+* We **squash‑merge** to keep history clean
+* Follows **Semantic Versioning** (`MAJOR.MINOR.PATCH`), tagged as `vX.Y.Z`
+
+---
+
+## 📄 License
+
+[MIT](LICENSE)
+
+---
+
+Made with ❤️ by [Jahongir Ganiev](https://github.com/ganiyevuz)
+Security questions or commercial support? Open an issue or email **[contact@jakhongir.dev](mailto:contact@jakhongir.dev)**

django_trusted_devices-1.1/README.md

@@ -0,0 +1,238 @@
+# 🔐 Django Trusted Device
+
+A plug-and-play Django app that adds **trusted device management** to your API authentication system using
+`djangorestframework-simplejwt`. Automatically associates tokens with user devices, tracks login locations,
+and enables per-device control over access and session management.
+
+---
+[![Docs](https://img.shields.io/badge/docs-view-green?style=for-the-badge&logo=readthedocs)](https://ganiyevuz.github.io/django-trusted-devices/)
+
+
+## 🚀 Features
+
+* 🔑 **JWT tokens** include a unique `device_uid`
+* 🌍 **Auto-detect IP, region, and city** via [ipapi.co](https://ipapi.co)
+* 🛡️ **Per-device session tracking** with update/delete restrictions
+* 🔄 **Custom** `TokenObtainPair`, `TokenRefresh`, and `TokenVerify` views
+* 🚪 **Logout unwanted sessions** from the device list
+* 🧼 **Automatic cleanup**, optional global control rules
+* 🧩 **API-ready** – supports DRF out of the box
+* ⚙️ **Fully customizable** via `TRUSTED_DEVICE` Django settings
+* 🚫 **Rejects refresh/verify** from unknown or expired devices
+
+---
+
+## 📦 Installation
+
+```bash
+pip install django-trusted-device
+```
+
+Add to your `INSTALLED_APPS`:
+
+```python
+INSTALLED_APPS = [
+    ...
+    'trusted_devices',
+    'rest_framework_simplejwt.token_blacklist',
+]
+```
+
+Run migrations:
+
+```bash
+python manage.py migrate
+```
+
+---
+
+## ⚙️ Configuration
+
+Customize behavior in `settings.py`:
+
+```python
+TRUSTED_DEVICE = {
+    "DELETE_DELAY_MINUTES": 60 * 24 * 7,  # 7 days
+    "UPDATE_DELAY_MINUTES": 60,           # 1 hour
+    "ALLOW_GLOBAL_DELETE": True,
+    "ALLOW_GLOBAL_UPDATE": True,
+}
+```
+
+---
+
+## 🧩 Usage
+
+
+## 🔐 SimpleJWT configuration
+
+Replace default SimpleJWT serializers with TrustedDevice serializers.:
+
+```python
+from datetime import timedelta
+
+REST_FRAMEWORK = {
+    'DEFAULT_AUTHENTICATION_CLASSES': (
+        'trusted_devices.authentication.TrustedDeviceAuthentication',
+    ),
+}
+
+SIMPLE_JWT = {
+    "ACCESS_TOKEN_LIFETIME": timedelta(minutes=60),
+    "REFRESH_TOKEN_LIFETIME": timedelta(days=30),
+    "AUTH_HEADER_TYPES": ("Bearer",),
+    "TOKEN_OBTAIN_SERIALIZER": 'trusted_devices.serializers.TrustedDeviceTokenObtainPairSerializer',
+    "TOKEN_REFRESH_SERIALIZER": 'trusted_devices.serializers.TrustedDeviceTokenRefreshSerializer',
+    "TOKEN_VERIFY_SERIALIZER": 'trusted_devices.serializers.TrustedDeviceTokenVerifySerializer',
+}
+
+```
+
+### 🔐 Custom Token Views
+
+Replace the default SimpleJWT views with:
+
+```python
+from trusted_devices.views import (
+    TrustedDeviceTokenObtainPairView,
+    TrustedDeviceTokenRefreshView,
+    TrustedDeviceTokenVerifyView,
+)
+
+urlpatterns = [
+    path('api/token/', TrustedDeviceTokenObtainPairView.as_view(), name='token_obtain_pair'),
+    path('api/token/refresh/', TrustedDeviceTokenRefreshView.as_view(), name='token_refresh'),
+    path('api/token/verify/', TrustedDeviceTokenVerifyView.as_view(), name='token_verify'),
+]
+```
+
+---
+
+### 📡 Device Management API
+
+Use the provided `TrustedDeviceViewSet`:
+
+```python
+from trusted_devices.views import TrustedDeviceViewSet
+
+router.register(r'trusted-devices', TrustedDeviceViewSet, basename='trusted-device')
+```
+
+Endpoints:
+
+* `GET /trusted-devices` — List all trusted devices
+* `DELETE /trusted-devices/{device_uid}` — Delete a device
+* `PATCH /trusted-devices/{device_uid}` — Update device permissions
+
+---
+
+## 👤 Device Model
+
+Each trusted device includes:
+
+* `device_uid`: Unique UUID
+* `user_agent`: Browser or device string
+* `ip_address`: IP address
+* `country`, `region`, `city`: Geolocation (via `ipapi.co`)
+* `last_seen`, `created_at`: Timestamps
+* `can_delete_other_devices`, `can_update_other_devices`: Optional privileges
+
+---
+
+## 🧠 How It Works
+
+1. During login, a `device_uid` is generated and embedded in the token.
+2. Clients use that token (with `device_uid`) for refresh/verify.
+3. Each request is linked to a known device.
+4. Users can manage or restrict their devices via API or Admin.
+
+---
+
+## 🧪 Testing Locally
+
+```bash
+# 🧩 Create and activate a uv-managed virtual environment
+uv venv
+source .venv/bin/activate  # Windows: .venv\Scripts\activate
+
+# 📦 Install the package in editable mode with dev extras
+uv pip install -e ".[dev]"
+
+# 🧪 Run the test suite
+pytest
+```
+
+---
+
+## 🧱 Dependencies
+
+* Django
+* Django REST Framework
+* djangorestframework-simplejwt
+* [ipapi.co](https://ipapi.co) (for IP geolocation)
+
+---
+
+## 🗃️ Model Snapshot
+
+| Field                      | Purpose             |
+| -------------------------- | ------------------- |
+| `device_uid`               | UUID primary key    |
+| `user_agent`, `ip_address` | Device fingerprint  |
+| `country / region / city`  | Geo‑lookup          |
+| `last_seen / created_at`   | Activity timestamps |
+| `can_update_other_devices` | Granular permission |
+| `can_delete_other_devices` | Granular permission |
+
+---
+
+## 🤝 Collaboration & Contributing
+
+We love community contributions! To collaborate:
+
+1. **Fork** the repo and create a feature branch:
+
+   ```bash
+   git checkout -b feature/my-amazing-idea
+   ```
+
+2. **Follow code style** – run:
+
+   ```bash
+   make lint  # runs flake8, isort, black
+   ```
+
+3. **Write & run tests**:
+
+   ```bash
+   pytest
+   ```
+
+4. **Commit** with clear messages and open a **Pull Request**.
+   GitHub Actions will lint + test your branch automatically.
+
+---
+
+### 🗣️ Discussions & Issues
+
+* 💡 Questions / ideas → [GitHub Discussions](https://github.com/ganiyevuz/django-trusted-devices/discussions)
+* 🐛 Bugs / feature requests → [GitHub Issues](https://github.com/ganiyevuz/django-trusted-devices/issues)
+
+---
+
+### 🛠 Maintainer Workflow
+
+* PRs require at least one approval and passing CI
+* We **squash‑merge** to keep history clean
+* Follows **Semantic Versioning** (`MAJOR.MINOR.PATCH`), tagged as `vX.Y.Z`
+
+---
+
+## 📄 License
+
+[MIT](LICENSE)
+
+---
+
+Made with ❤️ by [Jahongir Ganiev](https://github.com/ganiyevuz)
+Security questions or commercial support? Open an issue or email **[contact@jakhongir.dev](mailto:contact@jakhongir.dev)**

django_trusted_devices-1.1/pyproject.toml

@@ -0,0 +1,68 @@
+[build-system]
+requires = ["setuptools>=61"]
+build-backend = "setuptools.build_meta"
+
+[project]
+name = "django-trusted-devices"
+version = "v1.1"
+description = "Secure and manage trusted login devices for Django users"
+readme = "README.md"
+requires-python = ">=3.13"
+license = { text = "MIT" }
+authors = [
+    { name = "Jakhongir Ganiev", email = "contact@jakhongir.dev" }
+]
+classifiers = [
+    "Development Status :: 3 - Alpha",
+    "Framework :: Django",
+    "Framework :: Django :: 4.2",
+    "Framework :: Django :: 5.0",
+    "Framework :: Django :: 5.1",
+    "Intended Audience :: Developers",
+    "License :: OSI Approved :: MIT License",
+    "Programming Language :: Python :: 3.10",
+    "Programming Language :: Python :: 3.11",
+    "Programming Language :: Python :: 3.12",
+]
+keywords = ["django", "trusted devices", "user security", "sessions", "login", "djangorestframework"]
+
+dependencies = [
+    "django>=4.2,<5.3",
+    "djangorestframework>=3.14.0",
+    "djangorestframework-simplejwt>=5.5.0",
+    "drf-yasg>=1.21.10",
+    "httpx>=0.28.1",
+]
+
+
+[project.optional-dependencies]
+docs = ["mkdocs", "mkdocs-material"]
+dev = [
+    "black>=25.1.0",
+    "build>=1.2.2.post1",
+    "flake8>=7.2.0",
+    "isort>=6.0.1",
+    "pytest>=8.3.5",
+    "pytest-cov>=6.1.1",
+    "pytest-django>=4.11.1",
+    "twine>=6.1.0",
+]
+
+[tool.mkdcos-gh-deploy]
+remote = "origin"
+branch = "gh-pages"
+
+[tool.setuptools]
+packages = { find = { where = ["src"] } }
+
+[tool.black]
+line-length = 88
+target-version = ["py310", "py311", "py312"]
+
+[tool.isort]
+profile = "black"
+multi_line_output = 3
+
+[tool.pytest.ini_options]
+testpaths = ["tests"]
+python_files = ["test_*.py"]

django_trusted_devices-1.1/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+