I am producing a series of tutorials on adding security to a shiny for python application. I'm using free-tier Posit Connect Cloud as I think the students want a free option. Both the frontend and the backend authentication server can also be hosted on Leapcell free-tier.
The playlist is here:
The tutorial series is divided into 4 sections. I am in the process of working on section 2 of the 4.
- single password using environmental variable on Post Connect Cloud server
- FastAPI authentication server using hashed passwords and cookies connecting to Shiny for Python server and frontend. Multiple users and passwords.
- JSON Web Token (JWT) for additional flexibility of the above
- Above with SQL server to store user information and provide role-based security
Although it's possible to use easier methods, I thought it would be interesting for s/hiny for Python users to build authentication systems from smaller components.
What are other people using to secure toy and hobby shiny for python applications?
If people are building something for a college portfolio or club, I think they want the free tier.