fastapi-user-auth icon indicating copy to clipboard operation
fastapi-user-auth copied to clipboard

Published 20 hours ago verified publisher icon amisadmin

Metadata

FastAPI-User-Auth is a simple and powerful FastAPI user RBAC authentication and authorization library. Based on FastAPI-Amis-Admin and provides a freely extensible visual management interface.

Results 22 fastapi-user-auth issues
Sort by recently updated
recently updated
newest added

想做一个验证码有亿点难

``` @router.get('/xxx/API/Verification_Code') async def verification_code(): '''验证码生成''' # 定义图片大小及背景颜色 image = Image.new('RGB', (120, 30), color=(73, 109, 137)) # 使用系统自带字体,或指定字体文件路径 font_path = "./static/arial.ttf" fnt = ImageFont.truetype(font_path, 15) d = ImageDraw.Draw(image) captcha_text =...

zeroChen00 avatar zeroChen00

登录跳转xss漏洞修复

1 comment

xss漏洞示例: ![image](https://github.com/user-attachments/assets/c1a64ed4-9378-4dd6-a607-631831edc0f7) 修复: ``` /fastapi_user_auth/admin/admin.py 第118行和第190行 import html form.redirect = html.escape(request.query_params.get("redirect") or "/") ``` 效果: ![image](https://github.com/user-attachments/assets/87354789-4628-49d2-8dcb-6f8dd55760ad)

zeroChen00 avatar zeroChen00

Metadata

314
Stars
41
Forks
Watchers

Owner

verified publisher icon amisadmin

Metadata

FastAPI-User-Auth is a simple and powerful FastAPI user RBAC authentication and authorization library. Based on FastAPI-Amis-Admin and provides a freely extensible visual management interface.

Back