pycerberus: input validation done right
pycerberus is a framework to check user data thoroughly so that you can protect your application from malicious (or just garbled) input data.
- Remove stupid code which converts input values: After values are validated, you can work with real Python types instead of strings - e.g. 42 instead of '42', convert database IDs to model objects transparently.
- Implement custom validation rules: Writing custom validators is straightforward, everything is well documented and pycerberus only uses very little Python magic.
- Focus on your value-adding application code: Save time by implementing every input validation rule only once, but 100% right instead of implementing a dozen different half-baked solutions.
- Ready for global business: i18n support (based on GNU gettext) is built in, adding custom translations is easy.
- Tune it for your needs: You can implement custom behavior in your validators, e.g. fetch translations from a database instead of using gettext or define custom translations for built-in validators.
- Use it wherever you like: pycerberus is used in a SMTP server, trac macros as well as web applications - there are no dependecies on a specific context like web development. Also a wide range of Python versions is supported: 2.3-2.7 as well as Python 3!
The whole code is licensed under the very liberal MIT license so you can use it in your own code without problems.
Documentation and Support
- HTML documentation for pycerberus
- Use the mailing list to ask for help or discuss new features
- If you found a bug, please file a bug.
If you like this software, please do me a favor and vote on Ohloh and/or click the 'I use it' button on right.