Learning how to build a full backend API solution including token-based authentication with Flask-Security. The project may include a simple front end to show it working, but the main goal is to build the API to refer to in the future.
I will be following this link best I can:
Any others I come across will be added here as well.
get a token like this:
POST testflask.local:5000/login with {"email":"email here", "password":"password here"}
then use the token to authenticate to /dummy-api/ with Authentication-Token:"token here" using an HTTP GET
NOTE: This requires CSRF to be turned off for Flask-WTF... This may not be the best thing. Additionally, the current release of Flask-Security does not allow us to expire tokens! The develop branch does currently do this.