- Course
Authorization for Python
In this course you will learn the core concepts and practical techniques needed to enforce access control at every layer of your application.
Intermediate
- Course
Authorization for Python
In this course you will learn the core concepts and practical techniques needed to enforce access control at every layer of your application.
Intermediate
Get started today
Access this course and other top-rated tech content with one of our business plans.
Try this course for free
Access this course and other top-rated tech content with one of our individual plans.
This course is included in the libraries shown below:
- Security
What you'll learn
All it takes is one missing permission check to expose sensitive data to the wrong user. In this course, Authorization for Python, you will learn the core concepts and practical techniques needed to implement authorization patterns effectively. First, you will explore how insecure direct object reference vulnerabilities appear in Python API endpoints and how to detect and fix them before they reach production. Next, you will implement role-based access control middleware that enforces vertical access boundaries across your application. Then, you will apply row-level security in SQLAlchemy and Django ORM so that database queries never return rows a user should not see. Finally, you will configure role-specific database credentials in your DATABASES settings to enforce least privilege at the database layer itself. When you are finished with this course, you will be able to apply these techniques with clarity and confidence in your own projects.
Authorization for Python
Intermediate
Table of contents
Lee Allen is a penetration tester by trade. Lee has authored four books about penetration testing and has created several Pluralsight courses.
