.. _faq:

Frequently-asked questions
==========================

The following are miscellaneous common questions and answers related
to installing/using django-registration, culled from bug reports,
emails and other sources.


General
-------

**How can I support social-media and other auth schemes, like Facebook or GitHub?**

    By using `django-allauth
    <https://pypi.python.org/pypi/django-allauth>`_. No single
    application can or should provide a universal API for every
    authentication system ever developed; django-registration
    sticks to making it easy to implement typical signup workflows
    using Django's own user model and auth system (with some ability
    to use custom user models), while apps like ``django-allauth``
    handle integration with third-party authentication services far
    more effectively.

**What license is django-registration under?**

    django-registration is offered under a three-clause BSD-style
    license; this is `an OSI-approved open-source license
    <http://www.opensource.org/licenses/bsd-license.php>`_, and allows
    you a large degree of freedom in modifiying and redistributing the
    code. For the full terms, see the file ``LICENSE`` which came with
    your copy of django-registration; if you did not receive a copy of
    this file, you can view it online at
    <https://github.com/ubernostrum/django-registration/blob/master/LICENSE>.

**What versions of Django and Python are supported?**

    As of django-registration |version|, Django 1.8, 1.9, and 1.10
    are supported, on Python 2.7, 3.3 (Django 1.8 only), 3.4 and
    3.5. Although Django 1.8 supported Python 3.2 at initial release,
    Python 3.2 is now at its end-of-life and django-registration
    no longer supports it.

    It is expected that django-registration |version| will work
    without modification on Python 3.6 once it is released.

**I found a bug or want to make an improvement!**

    The canonical development repository for django-registration
    is online at
    <https://github.com/ubernostrum/django-registration>. Issues and
    pull requests can both be filed there.

    If you'd like to contribute to django-registration, that's
    great! Just please remember that pull requests should include
    tests and documentation for any changes made, and that following
    `PEP 8 <https://www.python.org/dev/peps/pep-0008/>`_ is
    mandatory. Pull requests without documentation won't be merged,
    and PEP 8 style violations or test coverage below 100% are both
    configured to break the build.

**How secure is django-registration?**

   In the nine-year history of django-registration, there have
   been no security issues reported which required new releases to
   remedy. This doesn't mean, though, that django-registration is
   perfectly secure: much will depend on ensuring best practices in
   deployment and server configuration, and there could always be
   security issues that just haven't been recognized yet.

   django-registration does, however, try to avoid common security
   issues:

   * django-registration |version| only supports versions of
     Django which were receiving upstream security support at the time
     of release.

   * django-registration does not attempt to generate or store
     passwords, and does not transmit credentials which could be used
     to log in (the only "credential" ever sent out by
     django-registration is an activation key used in the two-step
     activation workflows, and that key can only be used to make an
     account active; it cannot be used to log in).

   * django-registration works with Django's own security features
     (including cryptographic features) where possible, rather than
     reinventing its own.

**How do I run the tests?**

    django-registration makes use of Django's own built-in
    unit-testing tools, and supports several ways to execute its test
    suite:

    * Within a Django project, simply invoke ``manage.py test
      registration``.

    * If you've installed django-registration (so that it's on
      your Python import path) and Django, but don't yet have a
      project created or want to test independently of a project, you
      can run ``registration/runtests.py``, or you can invoke ``python
      setup.py test`` (which will simply run
      ``registration/runtests.py``).

    Additionally, the ``setup.cfg`` file included in
    django-registration provides configuration for `coverage.py
    <https://coverage.readthedocs.io/>`_, enabling
    easy recording and reporting of test coverage.

   
Installation and setup
----------------------

**How do I install django-registration?**

    Full instructions are available in :ref:`the installation guide
    <install>`. For configuration, see :ref:`the quick start guide
    <quickstart>`.

**Does django-registration come with any sample templates I can use right away?**

    No, for two reasons:

    1. Providing default templates with an application is ranges from
       hard to impossible, because different sites can have such
       wildly different design and template structure. Any attempt to
       provide templates which would work with all the possibilities
       would probably end up working with none of them.

    2. A number of things in django-registration depend on the
       specific registration workflow you use, including the variables
       which end up in template contexts. Since django-registration
       has no way of knowing in advance what workflow you're going to
       be using, it also has no way of knowing what your templates
       will need to look like.
    
    Fortunately, however, django-registration has good documentation
    which explains what context variables will be available to
    templates, and so it should be easy for anyone who knows Django's
    template system to create templates which integrate with their own
    site.


Configuration
-------------

**Should I used the model-based or HMAC activation workflow?**

    You're free to choose whichever one you think best fits your
    needs. However, :ref:`the model-based workflow <model-workflow>`
    is mostly provided for backwards compatibility with older versions
    of django-registration; it dates to 2007, and though it is
    still as functional as ever, :ref:`the HMAC workflow
    <hmac-workflow>` has less overhead (i.e., no need to install or
    work with any models) due to being able to take advantage of more
    modern features in Django.

**Do I need to rewrite the views to change the way they behave?**

    Not always. Any behavior controlled by an attribute on a
    class-based view can be changed by passing a different value for
    that attribute in the URLConf. See `Django's class-based view
    documentation
    <https://docs.djangoproject.com/en/stable/topics/class-based-views/#simple-usage-in-your-urlconf>`_
    for examples of this.

    For more complex or fine-grained control, you will likely want to
    subclass :class:`~registration.views.RegistrationView` or
    :class:`~registration.views.ActivationView`, or both, add your
    custom logic to your subclasses, and then create a URLConf which
    makes use of your subclasses.
    
**I don't want to write my own URLconf because I don't want to write patterns for all the auth views!**

    You're in luck, then; django-registration provides a URLconf
    which *only* contains the patterns for the auth views, and which
    you can include in your own URLconf anywhere you'd like; it lives
    at ``registration.auth_urls``.

**I don't like the names you've given to the URL patterns!**

    In that case, you should feel free to set up your own URLconf
    which uses the names you want.

**I'm using a custom user model; how do I make that work?**

    See :ref:`the custom user documentation <custom-user>`.

Tips and tricks
---------------

**How do I log a user in immediately after registration or activation?**

    Take a look at the implementation of :ref:`the simple one-step workflow
    <simple-workflow>`, which logs a user in immediately after
    registration.


**How do I re-send an activation email?**

    Assuming you're using :ref:`the model-based workflow
    <model-workflow>`, a `custom admin action
    <http://docs.djangoproject.com/en/stable/ref/contrib/admin/actions/>`_
    is provided for this; in the admin for the
    :class:`~registration.models.RegistrationProfile` model, simply
    click the checkbox for the user(s) you'd like to re-send the email
    for, then select the "Re-send activation emails" action.

**How do I manually activate a user?**

    In :ref:`the model-based workflow <model-workflow>`, a custom
    admin action is provided for this. In the admin for the
    ``RegistrationProfile`` model, click the checkbox for the user(s)
    you'd like to activate, then select the "Activate users" action.

    In the HMAC-based workflow, simply toggle the ``is_active`` field
    of the user in the admin.

**How do I allow Unicode in usernames?**

    Use Python 3. Django's username validation allows any word
    character plus some additional characters, but the definition of
    "word character" depends on the Python version in use. On Python
    2, only ASCII will be permitted; on Python 3, usernames containing
    word characters matched by a regex with the ``UNICODE`` flag will
    be accepted.
