🔐 Secure Web Application

A secure Flask-based web application implementing authentication, access control, and cybersecurity best practices

Overview

This project demonstrates secure web application development using Flask.

Features

• User Authentication (Login/Register)
• Password Hashing (bcrypt)
• Password Strength Validation
• Brute-force Protection
• Role-Based Access Control (Admin/User)
• CSRF Protection
• Security Logging
• Custom Error Handling

Tech Stack

• Python (Flask)
• SQLite
• Flask-Login
• Flask-WTF
• SQLAlchemy

📌 Project Repository

📊 Project Stats

💻 Most Used Languages

Installation

git clone https://github.com/DaniSam-STU/secure-web-application
cd secure-web-application
python -m venv venv
venv\Scripts\activate
pip install -r requirements.txt
python run.py

How to make one admin user

Run

python make_admin.py

use email that you wants to register as admin

📄 Purpose of Project

📘 Documentation

👉 View Full Documentation

🚀 Future Improvements

• Implement Two-Factor Authentication (2FA)
• Add Admin Dashboard with analytics
• Store logs in database instead of file
• Add IP tracking for suspicious logins
• Implement account lockout with timeout
• Add password reset via email
• Use JWT for API-based authentication
• Deploy application on cloud (AWS / Render)

🤝 Contributing

• Pull requests are welcome!
• Feel free to fork and improve this project.

👨‍💻 Author & Contact Information

• DAani Sam

📜 License

This project is intended for educational and ethical use only.

⭐ Support

If you like this project, give it a ⭐ on GitHub!