Flask Boilerplate

Secure foundation,
ready to go

Full user management, two-factor authentication and role-based access control — all production-ready out of the box.

Login → Features
Features
🔐
Two-factor authentication

TOTP-based 2FA with Google Authenticator. Simple QR code setup, session-level verification.

Role-based access

Admin, moderator, user roles. Simple route protection with decorators.

🛡️
Security layers

CSRF protection, rate limiting, account lockout, full audit log.

Admin panel

Create users, manage roles, activate/disable accounts and view the audit log.

🌍
Multi-language

English and Hungarian built-in via Flask-Babel. Add any language in minutes.

Production-ready

Flask-Migrate, Gunicorn, Flask-Talisman HTTPS enforcement, .env config.