A secure Flask web application built to handle real-world authentication flows — not just login forms, but verified users, protected routes, and attack resistance.
This project focuses on doing the basics correctly, not just making them work.
- 🔐 User Registration & Login
- 📧 Email Verification System
- 🔑 Secure Password Hashing
- 🚫 Rate Limiting (anti brute-force)
- 👤 Session Management (Flask-Login)
- 🛡️ Protected Dashboard
- 🧼 Input Validation
Backend
- Python
- Flask
- Flask-Login
- Flask-SQLAlchemy
- Flask-Mail
- Flask-Limiter
- itsdangerous
Database
- SQLite
Frontend
- HTML / CSS / JavaScript
git clone https://github.com/optimuxprime8089856470/lambda_flask.git
cd lambda_flaskpython -m venv venvActivate it:
Windows
venv\Scripts\activateLinux / macOS
source venv/bin/activatepip install -r requirements.txt
or install the packages manuallyCreate a .env file in the lambda configration env variables :
SECRET_KEY=your_secret_key
MAIL_USERNAME=your_email@gmail.com
MAIL_PASSWORD=your_app_password
if the gmail doesnt work
use trapmail (only for testing)
repalce the gmail credentials with trapmail credentials
⚠️ Never upload.envto GitHub
python app.pyOpen:
http://127.0.0.1:5000/
- Register account
- Receive verification email
- Activate account
- Login
- Access dashboard
- Password hashing (Werkzeug)
- Token-based email verification
- Rate limiting on login
- Session protection
- Environment variable handling
- Password reset system
- OAuth (Google login)
- Deployment (Render / VPS)
- Better UI/UX
Muhammed Darwish 🔗 https://github.com/optimuxprime8089856470
This project proves you understand how authentication actually works.
If you extend this → you’re improving. If you stop here → you’re still basic.
HOME PAGE
LOGIN PAGE
DASHBOARD PAGE
Register pagge
