Django includes excellent built-in sessions, however all the data is hidden away into base64 encoded data. This makes it very difficult to run a query on all active sessions for a particular user. django-user-sessions fixes this and makes session objects a first class citizen like other ORM objects.
Also, have a look at the online example app, hosted by Heroku. It also contains the package django-two-factor-auth, but that application is not a dependency for this package. Also have a look at the bundled example templates and views to see how you can integrate the application into your project.
Compatible with Django 1.4, 1.5, 1.6 and 1.7 on Python 2.6, 2.7, 3.2, 3.3 and 3.4. Documentation is available at readthedocs.org.
To get the list of a user's sessions:
user.session_set.filter(expire_date__gt=now())
Or logout the user everywhere:
user.session_set.all().delete()
The user's IP address and user agent are also stored on the session. This allows to show a list of active sessions to the user in the admin:
And also in a custom layout:
pip install django-user-sessions- In
INSTALLED_APPSreplace'django.contrib.sessions'with'user_sessions'. - In
MIDDLEWARE_CLASSESreplace'django.contrib.sessions.middleware.SessionMiddleware'with'user_sessions.middleware.SessionMiddleware'. - Add
SESSION_ENGINE = 'user_sessions.backends.db'. - Add
url(r'', include('user_sessions.urls', 'user_sessions')),to yoururls.py. - Run
python manage.py syncdb(ormigrate) and browse to/account/sessions/.
You need to setup GeoIP for the location detection to work. See the Django documentation on installing GeoIP.
- Fork the repository on GitHub and start hacking.
- Run the tests.
- Send a pull request with your changes.
- Provide a translation using Transifex.
This project is licensed under the MIT license.