Configuring Quart-Auth#

The following configuration options are used by Quart-Auth. They should be set as part of the standard Quart configuration.

Configuration key

type

default

QUART_AUTH_COOKIE_DOMAIN

str | None

None

QUART_AUTH_COOKIE_NAME

str

“QUART_AUTH”

QUART_AUTH_COOKIE_PATH

str

/

QUART_AUTH_COOKIE_HTTP_ONLY

bool

True

QUART_AUTH_COOKIE_SAMESITE

None | “Strict” | “Lax”

“Lax”

QUART_AUTH_COOKIE_SECURE

bool

True

QUART_AUTH_DURATION

int

365 * 24 * 60 * 60

QUART_AUTH_SALT

str

“quart auth salt”

The COOKIE related options refer directly to standard cookie options. In development it is likely that you’ll need to set QUART_AUTH_COOKIE_SECURE to False.

Secret key#

Quart also requires the app to have a secret key set SECRET_KEY in the Quart configuration. If you are unsure how to create a secret key use this snippet,

>>> import secrets
>>> secrets.token_urlsafe(16)