diff --git a/README.md b/README.md
index ae5dbe6..ec00ecc 100644
--- a/README.md
+++ b/README.md
@@ -8,7 +8,7 @@
 [![Pypi-format](https://img.shields.io/pypi/format/stream-localhost)](https://pypi.org/project/stream-localhost/#files)
 [![Pypi-status](https://img.shields.io/pypi/status/stream-localhost)][pypi]
 
-# Video Streaming
+# PyStream
 Python module to, stream videos via authenticated sessions using FastAPI
 
 ## Install
@@ -24,9 +24,8 @@ import pystream
 
 if __name__ == '__main__':
     kwargs = dict(
-        username="foo",
-        password="bar",
-        video_source=os.path.join(os.path.expanduser('~'), 'Downloads'),
+        authorization={"Alan Turing": "Pr0gRamM1ng", "Linus Torvalds": "LinuxOS"},
+        video_source=os.path.join(os.path.expanduser('~'), 'Downloads')
     )
     # Add the following to host on local IP address, skip for localhost (127.0.0.1)
     # kwargs["video_host"] = pystream.utils.get_local_ip()
@@ -38,9 +37,7 @@ if __name__ == '__main__':
 > Refer the [wiki page][wiki] for more information.
 
 **Mandatory**
-- **USERNAME**: Any username of choice.
-- **PASSWORD**: Any password of choice.
-- **SECRET**: Any private key to encode and decode JWT.
+- **AUTHORIZATION**: Dictionary of key-value pairs with `username` as key and `password` as value.
 - **VIDEO_SOURCE**: Source path for video files.
 > :bulb:   Files starting with `_` _(underscore)_ and `.` _(dot)_ will be ignored
 
diff --git a/authentication.md b/authentication.md
new file mode 100644
index 0000000..dd7810e
--- /dev/null
+++ b/authentication.md
@@ -0,0 +1,39 @@
+## Authentication
+`PyStream` uses two ways of authentication, the `username` and `password` to gain access to the server and
+a `session_token` generated by the server to access directories and streaming content.
+
+### Username and Password
+> [Signature Authentication][signature-authentication]
+#### Frontend
+- UI creates hex values for username and password using native JS
+- These hex values are then used the calculate the hash
+- Calculated hash is then base64 encoded using native JS, before sending the signature to the API in an authorization header
+
+#### Backend
+- API decodes the base64 encoded ascii string, then decodes the HEX received in authorization header
+- Then the value is broken down to, username, signature and timestamp
+- The decoded username is used to get the stored password from env variables, which are then hex encoded
+- API creates a hash signature using the hex username, hex password, and the timestamp
+- These signatures are then compared for authentication purpose
+
+### Session Token
+> [Symmetric Encryption][symmetric-encryption]
+- Once the login has been successful, the API creates a randomly generated 64 bit url safe token
+- This token is stored as unique key for each user
+- The API then forms a payload with the username, key, and the timestamp
+- This payload is then encrypted using Cryptography's Fernet, which can be retrieved only using the key
+- This encrypted payload is stored as a cookie before sending a `JSONResponse` with a `redirect_url`
+> Since the UI uses `AJAX` for authentication POST call, a `RedirectResponse` from FastAPI will not work,
+> as the call will simply follow the redirect to `GET` the content instead of redirecting the page.
+- The `redirect_url` from the JSON response is fetched, to alter `location.href`
+> This form of redirect will transfer cookies to the new page but not the headers,
+> so the username and password are lost in the frontend at this point
+- From then on, all calls to the backend including redirects, directory navigation and, streaming will carry the cookie
+- The `session_token` is the only form of authentication from this point onward
+
+### References
+- [symmetric-encryption]
+- [signature-authentication]
+
+[symmetric-encryption]: https://cryptography.io/en/latest/fernet/
+[signature-authentication]: https://developers.expediagroup.com/docs/products/rapid/resources/reference/signature-authentication
diff --git a/doc_gen/index.rst b/doc_gen/index.rst
index ff8317e..7394aef 100644
--- a/doc_gen/index.rst
+++ b/doc_gen/index.rst
@@ -11,6 +11,7 @@ Stream-Localhost - A secured interface to stream videos
    :caption: Read Me:
 
    README
+   authentication
 
 Main Module
 ===========
@@ -42,6 +43,13 @@ Images
    :members:
    :undoc-members:
 
+Secure
+======
+
+.. automodule:: pystream.models.secure
+   :members:
+   :undoc-members:
+
 Squire
 ======
 
diff --git a/docs/README.html b/docs/README.html
index d775c51..57f3bdf 100644
--- a/docs/README.html
+++ b/docs/README.html
@@ -6,7 +6,7 @@
     <meta charset="utf-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" /><meta name="generator" content="Docutils 0.19: https://docutils.sourceforge.io/" />
 
-    <title>Video Streaming &#8212; Stream  documentation</title>
+    <title>PyStream &#8212; Stream  documentation</title>
     <link rel="stylesheet" type="text/css" href="_static/pygments.css" />
     <link rel="stylesheet" type="text/css" href="_static/classic.css" />
     
@@ -18,6 +18,7 @@
     
     <link rel="index" title="Index" href="genindex.html" />
     <link rel="search" title="Search" href="search.html" />
+    <link rel="next" title="Authentication" href="authentication.html" />
     <link rel="prev" title="Stream-Localhost - A secured interface to stream videos" href="index.html" /> 
   </head><body>
     <div class="related" role="navigation" aria-label="related navigation">
@@ -29,11 +30,14 @@ <h3>Navigation</h3>
         <li class="right" >
           <a href="py-modindex.html" title="Python Module Index"
              >modules</a> |</li>
+        <li class="right" >
+          <a href="authentication.html" title="Authentication"
+             accesskey="N">next</a> |</li>
         <li class="right" >
           <a href="index.html" title="Stream-Localhost - A secured interface to stream videos"
              accesskey="P">previous</a> |</li>
         <li class="nav-item nav-item-0"><a href="index.html">Stream  documentation</a> &#187;</li>
-        <li class="nav-item nav-item-this"><a href="">Video Streaming</a></li> 
+        <li class="nav-item nav-item-this"><a href="">PyStream</a></li> 
       </ul>
     </div>  
 
@@ -49,8 +53,8 @@ <h3>Navigation</h3>
 <p><a class="reference external" href="https://pypi.org/project/stream-localhost"><img alt="PyPI version shields.io" src="https://img.shields.io/pypi/v/stream-localhost" /></a>
 <a class="reference external" href="https://pypi.org/project/stream-localhost/#files"><img alt="Pypi-format" src="https://img.shields.io/pypi/format/stream-localhost" /></a>
 <a class="reference external" href="https://pypi.org/project/stream-localhost"><img alt="Pypi-status" src="https://img.shields.io/pypi/status/stream-localhost" /></a></p>
-<section id="video-streaming">
-<h1>Video Streaming<a class="headerlink" href="#video-streaming" title="Permalink to this heading">¶</a></h1>
+<section id="pystream">
+<h1>PyStream<a class="headerlink" href="#pystream" title="Permalink to this heading">¶</a></h1>
 <p>Python module to, stream videos via authenticated sessions using FastAPI</p>
 <section id="install">
 <h2>Install<a class="headerlink" href="#install" title="Permalink to this heading">¶</a></h2>
@@ -66,9 +70,8 @@ <h2>Sample Usage<a class="headerlink" href="#sample-usage" title="Permalink to t
 
 <span class="k">if</span> <span class="vm">__name__</span> <span class="o">==</span> <span class="s1">&#39;__main__&#39;</span><span class="p">:</span>
     <span class="n">kwargs</span> <span class="o">=</span> <span class="nb">dict</span><span class="p">(</span>
-        <span class="n">username</span><span class="o">=</span><span class="s2">&quot;foo&quot;</span><span class="p">,</span>
-        <span class="n">password</span><span class="o">=</span><span class="s2">&quot;bar&quot;</span><span class="p">,</span>
-        <span class="n">video_source</span><span class="o">=</span><span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">expanduser</span><span class="p">(</span><span class="s1">&#39;~&#39;</span><span class="p">),</span> <span class="s1">&#39;Downloads&#39;</span><span class="p">),</span>
+        <span class="n">authorization</span><span class="o">=</span><span class="p">{</span><span class="s2">&quot;Alan Turing&quot;</span><span class="p">:</span> <span class="s2">&quot;Pr0gRamM1ng&quot;</span><span class="p">,</span> <span class="s2">&quot;Linus Torvalds&quot;</span><span class="p">:</span> <span class="s2">&quot;LinuxOS&quot;</span><span class="p">},</span>
+        <span class="n">video_source</span><span class="o">=</span><span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">expanduser</span><span class="p">(</span><span class="s1">&#39;~&#39;</span><span class="p">),</span> <span class="s1">&#39;Downloads&#39;</span><span class="p">)</span>
     <span class="p">)</span>
     <span class="c1"># Add the following to host on local IP address, skip for localhost (127.0.0.1)</span>
     <span class="c1"># kwargs[&quot;video_host&quot;] = pystream.utils.get_local_ip()</span>
@@ -78,14 +81,12 @@ <h2>Sample Usage<a class="headerlink" href="#sample-usage" title="Permalink to t
 <section id="env-variables">
 <h3>Env Variables<a class="headerlink" href="#env-variables" title="Permalink to this heading">¶</a></h3>
 <blockquote>
-<div><p>:bulb:   Environment variables can <em>(optionally)</em> be loaded from any file.<br>
-Refer the <a class="reference external" href="https://github.com/thevickypedia/pystream/wiki">wiki page</a> for more information.</p>
+<div><p>:bulb:   Environment variables can be loaded from any file. <em>Filename defaults to <code class="docutils literal notranslate"><span class="pre">.env</span></code></em><br>
+To use custom filenames, set the env var <code class="docutils literal notranslate"><span class="pre">env_file</span></code> as <code class="docutils literal notranslate"><span class="pre">key</span></code> and the <em>filename</em> as its <code class="docutils literal notranslate"><span class="pre">value</span></code></p>
 </div></blockquote>
 <p><strong>Mandatory</strong></p>
 <ul class="simple">
-<li><p><strong>USERNAME</strong>: Any username of choice.</p></li>
-<li><p><strong>PASSWORD</strong>: Any password of choice.</p></li>
-<li><p><strong>SECRET</strong>: Any private key to encode and decode JWT.</p></li>
+<li><p><strong>AUTHORIZATION</strong>: Dictionary of key-value pairs with <code class="docutils literal notranslate"><span class="pre">username</span></code> as key and <code class="docutils literal notranslate"><span class="pre">password</span></code> as value.</p></li>
 <li><p><strong>VIDEO_SOURCE</strong>: Source path for video files.</p></li>
 </ul>
 <blockquote>
@@ -158,7 +159,7 @@ <h2>License &amp; copyright<a class="headerlink" href="#license-copyright" title
   <div>
     <h3><a href="index.html">Table of Contents</a></h3>
     <ul>
-<li><a class="reference internal" href="#">Video Streaming</a><ul>
+<li><a class="reference internal" href="#">PyStream</a><ul>
 <li><a class="reference internal" href="#install">Install</a></li>
 <li><a class="reference internal" href="#sample-usage">Sample Usage</a><ul>
 <li><a class="reference internal" href="#env-variables">Env Variables</a></li>
@@ -180,6 +181,11 @@ <h4>Previous topic</h4>
     <p class="topless"><a href="index.html"
                           title="previous chapter">Stream-Localhost - A secured interface to stream videos</a></p>
   </div>
+  <div>
+    <h4>Next topic</h4>
+    <p class="topless"><a href="authentication.html"
+                          title="next chapter">Authentication</a></p>
+  </div>
   <div role="note" aria-label="source link">
     <h3>This Page</h3>
     <ul class="this-page-menu">
@@ -210,11 +216,14 @@ <h3>Navigation</h3>
         <li class="right" >
           <a href="py-modindex.html" title="Python Module Index"
              >modules</a> |</li>
+        <li class="right" >
+          <a href="authentication.html" title="Authentication"
+             >next</a> |</li>
         <li class="right" >
           <a href="index.html" title="Stream-Localhost - A secured interface to stream videos"
              >previous</a> |</li>
         <li class="nav-item nav-item-0"><a href="index.html">Stream  documentation</a> &#187;</li>
-        <li class="nav-item nav-item-this"><a href="">Video Streaming</a></li> 
+        <li class="nav-item nav-item-this"><a href="">PyStream</a></li> 
       </ul>
     </div>
     <div class="footer" role="contentinfo">
diff --git a/docs/README.md b/docs/README.md
index ae5dbe6..25b6be4 100644
--- a/docs/README.md
+++ b/docs/README.md
@@ -8,7 +8,7 @@
 [![Pypi-format](https://img.shields.io/pypi/format/stream-localhost)](https://pypi.org/project/stream-localhost/#files)
 [![Pypi-status](https://img.shields.io/pypi/status/stream-localhost)][pypi]
 
-# Video Streaming
+# PyStream
 Python module to, stream videos via authenticated sessions using FastAPI
 
 ## Install
@@ -24,9 +24,8 @@ import pystream
 
 if __name__ == '__main__':
     kwargs = dict(
-        username="foo",
-        password="bar",
-        video_source=os.path.join(os.path.expanduser('~'), 'Downloads'),
+        authorization={"Alan Turing": "Pr0gRamM1ng", "Linus Torvalds": "LinuxOS"},
+        video_source=os.path.join(os.path.expanduser('~'), 'Downloads')
     )
     # Add the following to host on local IP address, skip for localhost (127.0.0.1)
     # kwargs["video_host"] = pystream.utils.get_local_ip()
@@ -34,13 +33,11 @@ if __name__ == '__main__':
 ```
 
 ### Env Variables
-> :bulb: &nbsp; Environment variables can _(optionally)_ be loaded from any file.<br>
-> Refer the [wiki page][wiki] for more information.
+> :bulb: &nbsp; Environment variables can be loaded from any file. _Filename defaults to `.env`_<br>
+> To use custom filenames, set the env var `env_file` as `key` and the _filename_ as its `value`
 
 **Mandatory**
-- **USERNAME**: Any username of choice.
-- **PASSWORD**: Any password of choice.
-- **SECRET**: Any private key to encode and decode JWT.
+- **AUTHORIZATION**: Dictionary of key-value pairs with `username` as key and `password` as value.
 - **VIDEO_SOURCE**: Source path for video files.
 > :bulb: &nbsp; Files starting with `_` _(underscore)_ and `.` _(dot)_ will be ignored
 
@@ -109,4 +106,3 @@ Licensed under the [MIT License][license]
 [isort]: https://pycqa.github.io/isort/
 [sphinx]: https://www.sphinx-doc.org/en/master/man/sphinx-autogen.html
 [runbook]: https://thevickypedia.github.io/pystream/
-[wiki]: https://github.com/thevickypedia/pystream/wiki
diff --git a/docs/_sources/README.md.txt b/docs/_sources/README.md.txt
index ae5dbe6..25b6be4 100644
--- a/docs/_sources/README.md.txt
+++ b/docs/_sources/README.md.txt
@@ -8,7 +8,7 @@
 [![Pypi-format](https://img.shields.io/pypi/format/stream-localhost)](https://pypi.org/project/stream-localhost/#files)
 [![Pypi-status](https://img.shields.io/pypi/status/stream-localhost)][pypi]
 
-# Video Streaming
+# PyStream
 Python module to, stream videos via authenticated sessions using FastAPI
 
 ## Install
@@ -24,9 +24,8 @@ import pystream
 
 if __name__ == '__main__':
     kwargs = dict(
-        username="foo",
-        password="bar",
-        video_source=os.path.join(os.path.expanduser('~'), 'Downloads'),
+        authorization={"Alan Turing": "Pr0gRamM1ng", "Linus Torvalds": "LinuxOS"},
+        video_source=os.path.join(os.path.expanduser('~'), 'Downloads')
     )
     # Add the following to host on local IP address, skip for localhost (127.0.0.1)
     # kwargs["video_host"] = pystream.utils.get_local_ip()
@@ -34,13 +33,11 @@ if __name__ == '__main__':
 ```
 
 ### Env Variables
-> :bulb: &nbsp; Environment variables can _(optionally)_ be loaded from any file.<br>
-> Refer the [wiki page][wiki] for more information.
+> :bulb: &nbsp; Environment variables can be loaded from any file. _Filename defaults to `.env`_<br>
+> To use custom filenames, set the env var `env_file` as `key` and the _filename_ as its `value`
 
 **Mandatory**
-- **USERNAME**: Any username of choice.
-- **PASSWORD**: Any password of choice.
-- **SECRET**: Any private key to encode and decode JWT.
+- **AUTHORIZATION**: Dictionary of key-value pairs with `username` as key and `password` as value.
 - **VIDEO_SOURCE**: Source path for video files.
 > :bulb: &nbsp; Files starting with `_` _(underscore)_ and `.` _(dot)_ will be ignored
 
@@ -109,4 +106,3 @@ Licensed under the [MIT License][license]
 [isort]: https://pycqa.github.io/isort/
 [sphinx]: https://www.sphinx-doc.org/en/master/man/sphinx-autogen.html
 [runbook]: https://thevickypedia.github.io/pystream/
-[wiki]: https://github.com/thevickypedia/pystream/wiki
diff --git a/docs/_sources/authentication.md.txt b/docs/_sources/authentication.md.txt
new file mode 100644
index 0000000..dd7810e
--- /dev/null
+++ b/docs/_sources/authentication.md.txt
@@ -0,0 +1,39 @@
+## Authentication
+`PyStream` uses two ways of authentication, the `username` and `password` to gain access to the server and
+a `session_token` generated by the server to access directories and streaming content.
+
+### Username and Password
+> [Signature Authentication][signature-authentication]
+#### Frontend
+- UI creates hex values for username and password using native JS
+- These hex values are then used the calculate the hash
+- Calculated hash is then base64 encoded using native JS, before sending the signature to the API in an authorization header
+
+#### Backend
+- API decodes the base64 encoded ascii string, then decodes the HEX received in authorization header
+- Then the value is broken down to, username, signature and timestamp
+- The decoded username is used to get the stored password from env variables, which are then hex encoded
+- API creates a hash signature using the hex username, hex password, and the timestamp
+- These signatures are then compared for authentication purpose
+
+### Session Token
+> [Symmetric Encryption][symmetric-encryption]
+- Once the login has been successful, the API creates a randomly generated 64 bit url safe token
+- This token is stored as unique key for each user
+- The API then forms a payload with the username, key, and the timestamp
+- This payload is then encrypted using Cryptography's Fernet, which can be retrieved only using the key
+- This encrypted payload is stored as a cookie before sending a `JSONResponse` with a `redirect_url`
+> Since the UI uses `AJAX` for authentication POST call, a `RedirectResponse` from FastAPI will not work,
+> as the call will simply follow the redirect to `GET` the content instead of redirecting the page.
+- The `redirect_url` from the JSON response is fetched, to alter `location.href`
+> This form of redirect will transfer cookies to the new page but not the headers,
+> so the username and password are lost in the frontend at this point
+- From then on, all calls to the backend including redirects, directory navigation and, streaming will carry the cookie
+- The `session_token` is the only form of authentication from this point onward
+
+### References
+- [symmetric-encryption]
+- [signature-authentication]
+
+[symmetric-encryption]: https://cryptography.io/en/latest/fernet/
+[signature-authentication]: https://developers.expediagroup.com/docs/products/rapid/resources/reference/signature-authentication
diff --git a/docs/_sources/index.rst.txt b/docs/_sources/index.rst.txt
index ff8317e..7394aef 100644
--- a/docs/_sources/index.rst.txt
+++ b/docs/_sources/index.rst.txt
@@ -11,6 +11,7 @@ Stream-Localhost - A secured interface to stream videos
    :caption: Read Me:
 
    README
+   authentication
 
 Main Module
 ===========
@@ -42,6 +43,13 @@ Images
    :members:
    :undoc-members:
 
+Secure
+======
+
+.. automodule:: pystream.models.secure
+   :members:
+   :undoc-members:
+
 Squire
 ======
 
diff --git a/docs/authentication.html b/docs/authentication.html
new file mode 100644
index 0000000..b05ea4d
--- /dev/null
+++ b/docs/authentication.html
@@ -0,0 +1,180 @@
+
+<!DOCTYPE html>
+
+<html lang="en">
+  <head>
+    <meta charset="utf-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" /><meta name="generator" content="Docutils 0.19: https://docutils.sourceforge.io/" />
+
+    <title>Authentication &#8212; Stream  documentation</title>
+    <link rel="stylesheet" type="text/css" href="_static/pygments.css" />
+    <link rel="stylesheet" type="text/css" href="_static/classic.css" />
+    
+    <script data-url_root="./" id="documentation_options" src="_static/documentation_options.js"></script>
+    <script src="_static/jquery.js"></script>
+    <script src="_static/underscore.js"></script>
+    <script src="_static/_sphinx_javascript_frameworks_compat.js"></script>
+    <script src="_static/doctools.js"></script>
+    
+    <link rel="index" title="Index" href="genindex.html" />
+    <link rel="search" title="Search" href="search.html" />
+    <link rel="prev" title="PyStream" href="README.html" /> 
+  </head><body>
+    <div class="related" role="navigation" aria-label="related navigation">
+      <h3>Navigation</h3>
+      <ul>
+        <li class="right" style="margin-right: 10px">
+          <a href="genindex.html" title="General Index"
+             accesskey="I">index</a></li>
+        <li class="right" >
+          <a href="py-modindex.html" title="Python Module Index"
+             >modules</a> |</li>
+        <li class="right" >
+          <a href="README.html" title="PyStream"
+             accesskey="P">previous</a> |</li>
+        <li class="nav-item nav-item-0"><a href="index.html">Stream  documentation</a> &#187;</li>
+        <li class="nav-item nav-item-this"><a href="">Authentication</a></li> 
+      </ul>
+    </div>  
+
+    <div class="document">
+      <div class="documentwrapper">
+        <div class="bodywrapper">
+          <div class="body" role="main">
+            
+  <section id="authentication">
+<h1>Authentication<a class="headerlink" href="#authentication" title="Permalink to this heading">¶</a></h1>
+<p><code class="docutils literal notranslate"><span class="pre">PyStream</span></code> uses two ways of authentication, the <code class="docutils literal notranslate"><span class="pre">username</span></code> and <code class="docutils literal notranslate"><span class="pre">password</span></code> to gain access to the server and
+a <code class="docutils literal notranslate"><span class="pre">session_token</span></code> generated by the server to access directories and streaming content.</p>
+<section id="username-and-password">
+<h2>Username and Password<a class="headerlink" href="#username-and-password" title="Permalink to this heading">¶</a></h2>
+<blockquote>
+<div><p><a class="reference external" href="https://developers.expediagroup.com/docs/products/rapid/resources/reference/signature-authentication">Signature Authentication</a></p>
+</div></blockquote>
+<section id="frontend">
+<h3>Frontend<a class="headerlink" href="#frontend" title="Permalink to this heading">¶</a></h3>
+<ul class="simple">
+<li><p>UI creates hex values for username and password using native JS</p></li>
+<li><p>These hex values are then used the calculate the hash</p></li>
+<li><p>Calculated hash is then base64 encoded using native JS, before sending the signature to the API in an authorization header</p></li>
+</ul>
+</section>
+<section id="backend">
+<h3>Backend<a class="headerlink" href="#backend" title="Permalink to this heading">¶</a></h3>
+<ul class="simple">
+<li><p>API decodes the base64 encoded ascii string, then decodes the HEX received in authorization header</p></li>
+<li><p>Then the value is broken down to, username, signature and timestamp</p></li>
+<li><p>The decoded username is used to get the stored password from env variables, which are then hex encoded</p></li>
+<li><p>API creates a hash signature using the hex username, hex password, and the timestamp</p></li>
+<li><p>These signatures are then compared for authentication purpose</p></li>
+</ul>
+</section>
+</section>
+<section id="session-token">
+<h2>Session Token<a class="headerlink" href="#session-token" title="Permalink to this heading">¶</a></h2>
+<blockquote>
+<div><p><a class="reference external" href="https://cryptography.io/en/latest/fernet/">Symmetric Encryption</a></p>
+</div></blockquote>
+<ul class="simple">
+<li><p>Once the login has been successful, the API creates a randomly generated 64 bit url safe token</p></li>
+<li><p>This token is stored as unique key for each user</p></li>
+<li><p>The API then forms a payload with the username, key, and the timestamp</p></li>
+<li><p>This payload is then encrypted using Cryptography’s Fernet, which can be retrieved only using the key</p></li>
+<li><p>This encrypted payload is stored as a cookie before sending a <code class="docutils literal notranslate"><span class="pre">JSONResponse</span></code> with a <code class="docutils literal notranslate"><span class="pre">redirect_url</span></code></p></li>
+</ul>
+<blockquote>
+<div><p>Since the UI uses <code class="docutils literal notranslate"><span class="pre">AJAX</span></code> for authentication POST call, a <code class="docutils literal notranslate"><span class="pre">RedirectResponse</span></code> from FastAPI will not work,
+as the call will simply follow the redirect to <code class="docutils literal notranslate"><span class="pre">GET</span></code> the content instead of redirecting the page.</p>
+</div></blockquote>
+<ul class="simple">
+<li><p>The <code class="docutils literal notranslate"><span class="pre">redirect_url</span></code> from the JSON response is fetched, to alter <code class="docutils literal notranslate"><span class="pre">location.href</span></code></p></li>
+</ul>
+<blockquote>
+<div><p>This form of redirect will transfer cookies to the new page but not the headers,
+so the username and password are lost in the frontend at this point</p>
+</div></blockquote>
+<ul class="simple">
+<li><p>From then on, all calls to the backend including redirects, directory navigation and, streaming will carry the cookie</p></li>
+<li><p>The <code class="docutils literal notranslate"><span class="pre">session_token</span></code> is the only form of authentication from this point onward</p></li>
+</ul>
+</section>
+<section id="references">
+<h2>References<a class="headerlink" href="#references" title="Permalink to this heading">¶</a></h2>
+<ul class="simple">
+<li><p><a class="reference external" href="https://cryptography.io/en/latest/fernet/">symmetric-encryption</a></p></li>
+<li><p><a class="reference external" href="https://developers.expediagroup.com/docs/products/rapid/resources/reference/signature-authentication">signature-authentication</a></p></li>
+</ul>
+</section>
+</section>
+
+
+            <div class="clearer"></div>
+          </div>
+        </div>
+      </div>
+      <div class="sphinxsidebar" role="navigation" aria-label="main navigation">
+        <div class="sphinxsidebarwrapper">
+  <div>
+    <h3><a href="index.html">Table of Contents</a></h3>
+    <ul>
+<li><a class="reference internal" href="#">Authentication</a><ul>
+<li><a class="reference internal" href="#username-and-password">Username and Password</a><ul>
+<li><a class="reference internal" href="#frontend">Frontend</a></li>
+<li><a class="reference internal" href="#backend">Backend</a></li>
+</ul>
+</li>
+<li><a class="reference internal" href="#session-token">Session Token</a></li>
+<li><a class="reference internal" href="#references">References</a></li>
+</ul>
+</li>
+</ul>
+
+  </div>
+  <div>
+    <h4>Previous topic</h4>
+    <p class="topless"><a href="README.html"
+                          title="previous chapter">PyStream</a></p>
+  </div>
+  <div role="note" aria-label="source link">
+    <h3>This Page</h3>
+    <ul class="this-page-menu">
+      <li><a href="_sources/authentication.md.txt"
+            rel="nofollow">Show Source</a></li>
+    </ul>
+   </div>
+<div id="searchbox" style="display: none" role="search">
+  <h3 id="searchlabel">Quick search</h3>
+    <div class="searchformwrapper">
+    <form class="search" action="search.html" method="get">
+      <input type="text" name="q" aria-labelledby="searchlabel" autocomplete="off" autocorrect="off" autocapitalize="off" spellcheck="false"/>
+      <input type="submit" value="Go" />
+    </form>
+    </div>
+</div>
+<script>document.getElementById('searchbox').style.display = "block"</script>
+        </div>
+      </div>
+      <div class="clearer"></div>
+    </div>
+    <div class="related" role="navigation" aria-label="related navigation">
+      <h3>Navigation</h3>
+      <ul>
+        <li class="right" style="margin-right: 10px">
+          <a href="genindex.html" title="General Index"
+             >index</a></li>
+        <li class="right" >
+          <a href="py-modindex.html" title="Python Module Index"
+             >modules</a> |</li>
+        <li class="right" >
+          <a href="README.html" title="PyStream"
+             >previous</a> |</li>
+        <li class="nav-item nav-item-0"><a href="index.html">Stream  documentation</a> &#187;</li>
+        <li class="nav-item nav-item-this"><a href="">Authentication</a></li> 
+      </ul>
+    </div>
+    <div class="footer" role="contentinfo">
+        &#169; Copyright 2023, Vignesh Rao.
+      Created using <a href="https://www.sphinx-doc.org/">Sphinx</a> 5.1.1.
+    </div>
+  </body>
+</html>
\ No newline at end of file
diff --git a/docs/authentication.md b/docs/authentication.md
new file mode 100644
index 0000000..dd7810e
--- /dev/null
+++ b/docs/authentication.md
@@ -0,0 +1,39 @@
+## Authentication
+`PyStream` uses two ways of authentication, the `username` and `password` to gain access to the server and
+a `session_token` generated by the server to access directories and streaming content.
+
+### Username and Password
+> [Signature Authentication][signature-authentication]
+#### Frontend
+- UI creates hex values for username and password using native JS
+- These hex values are then used the calculate the hash
+- Calculated hash is then base64 encoded using native JS, before sending the signature to the API in an authorization header
+
+#### Backend
+- API decodes the base64 encoded ascii string, then decodes the HEX received in authorization header
+- Then the value is broken down to, username, signature and timestamp
+- The decoded username is used to get the stored password from env variables, which are then hex encoded
+- API creates a hash signature using the hex username, hex password, and the timestamp
+- These signatures are then compared for authentication purpose
+
+### Session Token
+> [Symmetric Encryption][symmetric-encryption]
+- Once the login has been successful, the API creates a randomly generated 64 bit url safe token
+- This token is stored as unique key for each user
+- The API then forms a payload with the username, key, and the timestamp
+- This payload is then encrypted using Cryptography's Fernet, which can be retrieved only using the key
+- This encrypted payload is stored as a cookie before sending a `JSONResponse` with a `redirect_url`
+> Since the UI uses `AJAX` for authentication POST call, a `RedirectResponse` from FastAPI will not work,
+> as the call will simply follow the redirect to `GET` the content instead of redirecting the page.
+- The `redirect_url` from the JSON response is fetched, to alter `location.href`
+> This form of redirect will transfer cookies to the new page but not the headers,
+> so the username and password are lost in the frontend at this point
+- From then on, all calls to the backend including redirects, directory navigation and, streaming will carry the cookie
+- The `session_token` is the only form of authentication from this point onward
+
+### References
+- [symmetric-encryption]
+- [signature-authentication]
+
+[symmetric-encryption]: https://cryptography.io/en/latest/fernet/
+[signature-authentication]: https://developers.expediagroup.com/docs/products/rapid/resources/reference/signature-authentication
diff --git a/docs/genindex.html b/docs/genindex.html
index 0d75d77..fa1d2d4 100644
--- a/docs/genindex.html
+++ b/docs/genindex.html
@@ -42,6 +42,7 @@ <h1 id="index">Index</h1>
 
 <div class="genindex-jumpbox">
  <a href="#A"><strong>A</strong></a>
+ | <a href="#B"><strong>B</strong></a>
  | <a href="#C"><strong>C</strong></a>
  | <a href="#D"><strong>D</strong></a>
  | <a href="#E"><strong>E</strong></a>
@@ -49,6 +50,7 @@ <h1 id="index">Index</h1>
  | <a href="#G"><strong>G</strong></a>
  | <a href="#H"><strong>H</strong></a>
  | <a href="#I"><strong>I</strong></a>
+ | <a href="#K"><strong>K</strong></a>
  | <a href="#L"><strong>L</strong></a>
  | <a href="#M"><strong>M</strong></a>
  | <a href="#N"><strong>N</strong></a>
@@ -65,15 +67,41 @@ <h1 id="index">Index</h1>
 <h2 id="A">A</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
   <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.config.Static.Config.arbitrary_types_allowed">arbitrary_types_allowed (pystream.models.config.Static.Config attribute)</a>
+</li>
+      <li><a href="index.html#pystream.models.config.as_dict">as_dict() (in module pystream.models.config)</a>
+</li>
+  </ul></td>
+  <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.config.EnvConfig.authorization">authorization (pystream.models.config.EnvConfig attribute)</a>
+</li>
       <li><a href="index.html#pystream.models.config.EnvConfig.auto_thumbnail">auto_thumbnail (pystream.models.config.EnvConfig attribute)</a>
 </li>
   </ul></td>
 </tr></table>
 
+<h2 id="B">B</h2>
+<table style="width: 100%" class="indextable genindextable"><tr>
+  <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.secure.base64_decode">base64_decode() (in module pystream.models.secure)</a>
+</li>
+  </ul></td>
+  <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.secure.base64_encode">base64_encode() (in module pystream.models.secure)</a>
+</li>
+  </ul></td>
+</tr></table>
+
 <h2 id="C">C</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
+  <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.secure.calculate_hash">calculate_hash() (in module pystream.models.secure)</a>
+</li>
+  </ul></td>
   <td style="width: 33%; vertical-align: top;"><ul>
       <li><a href="index.html#pystream.models.config.Static.chunk_size">chunk_size (pystream.models.config.Static attribute)</a>
+</li>
+      <li><a href="index.html#pystream.models.config.Static.cipher_suite">cipher_suite (pystream.models.config.Static attribute)</a>
 </li>
   </ul></td>
 </tr></table>
@@ -95,15 +123,17 @@ <h2 id="E">E</h2>
 </li>
       <li><a href="index.html#pystream.models.config.EnvConfig.Config.env_prefix">env_prefix (pystream.models.config.EnvConfig.Config attribute)</a>
 </li>
-  </ul></td>
-  <td style="width: 33%; vertical-align: top;"><ul>
       <li><a href="index.html#pystream.models.config.EnvConfig">EnvConfig (class in pystream.models.config)</a>
 </li>
+  </ul></td>
+  <td style="width: 33%; vertical-align: top;"><ul>
       <li><a href="index.html#pystream.models.config.EnvConfig.Config">EnvConfig.Config (class in pystream.models.config)</a>
 </li>
       <li><a href="index.html#pystream.routers.basics.error">error() (in module pystream.routers.basics)</a>
 </li>
       <li><a href="index.html#pystream.models.config.EnvConfig.Config.extra">extra (pystream.models.config.EnvConfig.Config attribute)</a>
+</li>
+      <li><a href="index.html#pystream.models.authenticator.extract_credentials">extract_credentials() (in module pystream.models.authenticator)</a>
 </li>
   </ul></td>
 </tr></table>
@@ -135,10 +165,12 @@ <h2 id="G">G</h2>
 </li>
       <li><a href="index.html#pystream.models.squire.get_dir_stream_content">get_dir_stream_content() (in module pystream.models.squire)</a>
 </li>
-      <li><a href="index.html#pystream.routers.basics.get_favicon">get_favicon() (in module pystream.routers.basics)</a>
+      <li><a href="index.html#pystream.routers.auth.get_expiry">get_expiry() (in module pystream.routers.auth)</a>
 </li>
   </ul></td>
   <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.routers.basics.get_favicon">get_favicon() (in module pystream.routers.basics)</a>
+</li>
       <li><a href="index.html#pystream.models.squire.get_iter">get_iter() (in module pystream.models.squire)</a>
 </li>
       <li><a href="index.html#pystream.utils.get_local_ip">get_local_ip() (in module pystream.utils)</a>
@@ -155,10 +187,14 @@ <h2 id="G">G</h2>
 <h2 id="H">H</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
   <td style="width: 33%; vertical-align: top;"><ul>
-      <li><a href="index.html#pystream.models.config.EnvConfig.Config.hide_input_in_errors">hide_input_in_errors (pystream.models.config.EnvConfig.Config attribute)</a>
+      <li><a href="index.html#pystream.models.secure.hex_decode">hex_decode() (in module pystream.models.secure)</a>
+</li>
+      <li><a href="index.html#pystream.models.secure.hex_encode">hex_encode() (in module pystream.models.secure)</a>
 </li>
   </ul></td>
   <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.config.EnvConfig.Config.hide_input_in_errors">hide_input_in_errors (pystream.models.config.EnvConfig.Config attribute)</a>
+</li>
       <li><a href="index.html#pystream.models.config.Static.home_endpoint">home_endpoint (pystream.models.config.Static attribute)</a>
 </li>
       <li><a href="index.html#pystream.routers.auth.home_page">home_page() (in module pystream.routers.auth)</a>
@@ -182,6 +218,14 @@ <h2 id="I">I</h2>
   </ul></td>
 </tr></table>
 
+<h2 id="K">K</h2>
+<table style="width: 100%" class="indextable genindextable"><tr>
+  <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.squire.keygen">keygen() (in module pystream.models.squire)</a>
+</li>
+  </ul></td>
+</tr></table>
+
 <h2 id="L">L</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
   <td style="width: 33%; vertical-align: top;"><ul>
@@ -207,6 +251,8 @@ <h2 id="L">L</h2>
 <h2 id="M">M</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
   <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.config.Session.mapping">mapping (pystream.models.config.Session attribute)</a>
+</li>
       <li>
     module
 
@@ -220,6 +266,8 @@ <h2 id="M">M</h2>
         <li><a href="index.html#module-pystream.models.config">pystream.models.config</a>
 </li>
         <li><a href="index.html#module-pystream.models.images">pystream.models.images</a>
+</li>
+        <li><a href="index.html#module-pystream.models.secure">pystream.models.secure</a>
 </li>
         <li><a href="index.html#module-pystream.models.squire">pystream.models.squire</a>
 </li>
@@ -250,11 +298,11 @@ <h2 id="N">N</h2>
 <h2 id="P">P</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
   <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.config.EnvConfig.parse_authorization">parse_authorization() (pystream.models.config.EnvConfig class method)</a>
+</li>
       <li><a href="index.html#pystream.models.config.EnvConfig.parse_video_host">parse_video_host() (pystream.models.config.EnvConfig class method)</a>
 </li>
       <li><a href="index.html#pystream.models.config.EnvConfig.parse_website">parse_website() (pystream.models.config.EnvConfig class method)</a>
-</li>
-      <li><a href="index.html#pystream.models.config.EnvConfig.password">password (pystream.models.config.EnvConfig attribute)</a>
 </li>
       <li><a href="index.html#pystream.models.config.Static.preview">preview (pystream.models.config.Static attribute)</a>
 </li>
@@ -298,6 +346,13 @@ <h2 id="P">P</h2>
   </ul></td>
   <td style="width: 33%; vertical-align: top;"><ul>
       <li>
+    pystream.models.secure
+
+      <ul>
+        <li><a href="index.html#module-pystream.models.secure">module</a>
+</li>
+      </ul></li>
+      <li>
     pystream.models.squire
 
       <ul>
@@ -360,14 +415,16 @@ <h2 id="Q">Q</h2>
 <h2 id="R">R</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
   <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.authenticator.raise_error">raise_error() (in module pystream.models.authenticator)</a>
+</li>
       <li><a href="index.html#pystream.models.stream.range_requests_response">range_requests_response() (in module pystream.models.stream)</a>
 </li>
       <li><a href="index.html#pystream.main.redirect_exception_handler">redirect_exception_handler() (in module pystream.main)</a>
-</li>
-      <li><a href="index.html#pystream.models.config.RedirectException">RedirectException</a>
 </li>
   </ul></td>
   <td style="width: 33%; vertical-align: top;"><ul>
+      <li><a href="index.html#pystream.models.config.RedirectException">RedirectException</a>
+</li>
       <li><a href="index.html#pystream.models.squire.remove_thumbnail">remove_thumbnail() (in module pystream.models.squire)</a>
 </li>
       <li><a href="index.html#pystream.routers.basics.root">root() (in module pystream.routers.basics)</a>
@@ -380,27 +437,25 @@ <h2 id="R">R</h2>
 <h2 id="S">S</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
   <td style="width: 33%; vertical-align: top;"><ul>
-      <li><a href="index.html#pystream.models.config.EnvConfig.secret">secret (pystream.models.config.EnvConfig attribute)</a>
-</li>
       <li><a href="index.html#pystream.models.stream.send_bytes_range_requests">send_bytes_range_requests() (in module pystream.models.stream)</a>
 </li>
       <li><a href="index.html#pystream.models.config.Session">Session (class in pystream.models.config)</a>
 </li>
       <li><a href="index.html#pystream.models.config.EnvConfig.session_duration">session_duration (pystream.models.config.EnvConfig attribute)</a>
-</li>
-      <li><a href="index.html#pystream.models.config.Static.session_token">session_token (pystream.models.config.Static attribute)</a>
 </li>
       <li><a href="index.html#pystream.main.shutdown_tasks">shutdown_tasks() (in module pystream.main)</a>
 </li>
-  </ul></td>
-  <td style="width: 33%; vertical-align: top;"><ul>
       <li><a href="index.html#pystream.models.subtitles.srt_to_vtt">srt_to_vtt() (in module pystream.models.subtitles)</a>
 </li>
       <li><a href="index.html#pystream.main.start">start() (in module pystream.main)</a>
 </li>
+  </ul></td>
+  <td style="width: 33%; vertical-align: top;"><ul>
       <li><a href="index.html#pystream.main.startup_tasks">startup_tasks() (in module pystream.main)</a>
 </li>
       <li><a href="index.html#pystream.models.config.Static">Static (class in pystream.models.config)</a>
+</li>
+      <li><a href="index.html#pystream.models.config.Static.Config">Static.Config (class in pystream.models.config)</a>
 </li>
       <li><a href="index.html#pystream.models.config.Static.stream">stream (pystream.models.config.Static attribute)</a>
 </li>
@@ -430,7 +485,7 @@ <h2 id="T">T</h2>
 <h2 id="U">U</h2>
 <table style="width: 100%" class="indextable genindextable"><tr>
   <td style="width: 33%; vertical-align: top;"><ul>
-      <li><a href="index.html#pystream.models.config.EnvConfig.username">username (pystream.models.config.EnvConfig attribute)</a>
+      <li><a href="index.html#pystream.models.config.WebToken.username">username (pystream.models.config.WebToken attribute)</a>
 </li>
   </ul></td>
 </tr></table>
diff --git a/docs/index.html b/docs/index.html
index f6bb951..2e2ab52 100644
--- a/docs/index.html
+++ b/docs/index.html
@@ -18,7 +18,7 @@
     
     <link rel="index" title="Index" href="genindex.html" />
     <link rel="search" title="Search" href="search.html" />
-    <link rel="next" title="Video Streaming" href="README.html" /> 
+    <link rel="next" title="PyStream" href="README.html" /> 
   </head><body>
     <div class="related" role="navigation" aria-label="related navigation">
       <h3>Navigation</h3>
@@ -30,7 +30,7 @@ <h3>Navigation</h3>
           <a href="py-modindex.html" title="Python Module Index"
              >modules</a> |</li>
         <li class="right" >
-          <a href="README.html" title="Video Streaming"
+          <a href="README.html" title="PyStream"
              accesskey="N">next</a> |</li>
         <li class="nav-item nav-item-0"><a href="#">Stream  documentation</a> &#187;</li>
         <li class="nav-item nav-item-this"><a href="">Stream-Localhost - A secured interface to stream videos</a></li> 
@@ -47,7 +47,7 @@ <h1>Stream-Localhost - A secured interface to stream videos<a class="headerlink"
 <div class="toctree-wrapper compound">
 <p class="caption" role="heading"><span class="caption-text">Read Me:</span></p>
 <ul>
-<li class="toctree-l1"><a class="reference internal" href="README.html">Video Streaming</a><ul>
+<li class="toctree-l1"><a class="reference internal" href="README.html">PyStream</a><ul>
 <li class="toctree-l2"><a class="reference internal" href="README.html#install">Install</a></li>
 <li class="toctree-l2"><a class="reference internal" href="README.html#sample-usage">Sample Usage</a></li>
 <li class="toctree-l2"><a class="reference internal" href="README.html#coding-standards">Coding Standards</a></li>
@@ -58,6 +58,12 @@ <h1>Stream-Localhost - A secured interface to stream videos<a class="headerlink"
 <li class="toctree-l2"><a class="reference internal" href="README.html#license-copyright">License &amp; copyright</a></li>
 </ul>
 </li>
+<li class="toctree-l1"><a class="reference internal" href="authentication.html">Authentication</a><ul>
+<li class="toctree-l2"><a class="reference internal" href="authentication.html#username-and-password">Username and Password</a></li>
+<li class="toctree-l2"><a class="reference internal" href="authentication.html#session-token">Session Token</a></li>
+<li class="toctree-l2"><a class="reference internal" href="authentication.html#references">References</a></li>
+</ul>
+</li>
 </ul>
 </div>
 </section>
@@ -123,16 +129,28 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 </dl>
 </dd></dl>
 
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.authenticator.extract_credentials">
+<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.authenticator.</span></span><span class="sig-name descname"><span class="pre">extract_credentials</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">request</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Request</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">List</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">]</span></span></span></span><a class="headerlink" href="#pystream.models.authenticator.extract_credentials" title="Permalink to this definition">¶</a></dt>
+<dd><p>Extract the credentials from <code class="docutils literal notranslate"><span class="pre">Authorization</span></code> headers and decode it before returning as a list of strings.</p>
+</dd></dl>
+
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.authenticator.raise_error">
+<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.authenticator.</span></span><span class="sig-name descname"><span class="pre">raise_error</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">request</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">NoReturn</span></span></span><a class="headerlink" href="#pystream.models.authenticator.raise_error" title="Permalink to this definition">¶</a></dt>
+<dd><p>Raises a 401 Unauthorized error in case of bad credentials.</p>
+</dd></dl>
+
 <dl class="py function">
 <dt class="sig sig-object py" id="pystream.models.authenticator.verify_login">
-<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.authenticator.</span></span><span class="sig-name descname"><span class="pre">verify_login</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">request</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Request</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">JSONResponse</span></span></span><a class="headerlink" href="#pystream.models.authenticator.verify_login" title="Permalink to this definition">¶</a></dt>
-<dd><p>Verifies authentication.</p>
+<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.authenticator.</span></span><span class="sig-name descname"><span class="pre">verify_login</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">request</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Request</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">Dict</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">,</span></span><span class="w"> </span><span class="pre">Union</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">,</span></span><span class="w"> </span><span class="pre">int</span><span class="p"><span class="pre">]</span></span><span class="p"><span class="pre">]</span></span></span></span><a class="headerlink" href="#pystream.models.authenticator.verify_login" title="Permalink to this definition">¶</a></dt>
+<dd><p>Verifies authentication and generates session token for each user.</p>
 <dl class="field-list simple">
 <dt class="field-odd">Returns<span class="colon">:</span></dt>
-<dd class="field-odd"><p>Returns JSON response with content and status code.</p>
+<dd class="field-odd"><p>Returns a dictionary with the payload required to create the session token.</p>
 </dd>
 <dt class="field-even">Return type<span class="colon">:</span></dt>
-<dd class="field-even"><p>JSONResponse</p>
+<dd class="field-even"><p>Dict[str, str]</p>
 </dd>
 </dl>
 </dd></dl>
@@ -140,13 +158,10 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 <dl class="py function">
 <dt class="sig sig-object py" id="pystream.models.authenticator.verify_token">
 <em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.authenticator.</span></span><span class="sig-name descname"><span class="pre">verify_token</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">token</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">None</span></span></span><a class="headerlink" href="#pystream.models.authenticator.verify_token" title="Permalink to this definition">¶</a></dt>
-<dd><p>Decodes the JWT and validates the session token and expiration.</p>
+<dd><p>Decrypts the symmetric encrypted token and validates the session token and expiration.</p>
 <dl class="field-list simple">
 <dt class="field-odd">Parameters<span class="colon">:</span></dt>
-<dd class="field-odd"><p><strong>token</strong> – JSON web token.</p>
-</dd>
-<dt class="field-even">Raises<span class="colon">:</span></dt>
-<dd class="field-even"><p><a class="reference internal" href="#pystream.models.config.RedirectException" title="pystream.models.config.RedirectException"><strong>RedirectException</strong></a> – </p>
+<dd class="field-odd"><p><strong>token</strong> – Symmetric encrypted key.</p>
 </dd>
 </dl>
 </dd></dl>
@@ -154,9 +169,26 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 </section>
 <section id="module-pystream.models.config">
 <span id="config"></span><h1>Config<a class="headerlink" href="#module-pystream.models.config" title="Permalink to this heading">¶</a></h1>
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.config.as_dict">
+<span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">as_dict</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">pairs</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">List</span><span class="p"><span class="pre">[</span></span><span class="pre">Tuple</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">,</span></span><span class="w"> </span><span class="pre">str</span><span class="p"><span class="pre">]</span></span><span class="p"><span class="pre">]</span></span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">Dict</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">,</span></span><span class="w"> </span><span class="pre">SecretStr</span><span class="p"><span class="pre">]</span></span></span></span><a class="headerlink" href="#pystream.models.config.as_dict" title="Permalink to this definition">¶</a></dt>
+<dd><p>Custom decoder for <code class="docutils literal notranslate"><span class="pre">json.loads</span></code> passed via <code class="docutils literal notranslate"><span class="pre">object_pairs_hook</span></code> raising error on duplicate keys.</p>
+<dl class="field-list simple">
+<dt class="field-odd">Parameters<span class="colon">:</span></dt>
+<dd class="field-odd"><p><strong>pairs</strong> – Takes the ordered list of pairs as an argument.</p>
+</dd>
+<dt class="field-even">Returns<span class="colon">:</span></dt>
+<dd class="field-even"><p>A dictionary of key as string and value as a secret.</p>
+</dd>
+<dt class="field-odd">Return type<span class="colon">:</span></dt>
+<dd class="field-odd"><p>Dict[str, SecretStr]</p>
+</dd>
+</dl>
+</dd></dl>
+
 <dl class="py class">
 <dt class="sig sig-object py" id="pystream.models.config.EnvConfig">
-<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">EnvConfig</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">_case_sensitive</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">bool</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_env_prefix</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_env_file</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">DotenvType</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">PosixPath('.')</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_env_file_encoding</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_env_nested_delimiter</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_secrets_dir</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">Path</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="o"><span class="pre">*</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">username</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">password</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">SecretStr</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">secret</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">SecretStr</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">video_source</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Path</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">video_host</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">IPv4Address</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'127.0.0.1'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">video_port</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">8000</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">session_duration</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">3600</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">file_formats</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Sequence</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">]</span></span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">('.mov',</span> <span class="pre">'.mp4')</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">workers</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">1</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">website</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Optional</span><span class="p"><span class="pre">[</span></span><span class="pre">List</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">]</span></span><span class="p"><span class="pre">]</span></span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">[]</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">auto_thumbnail</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">bool</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">True</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.config.EnvConfig" title="Permalink to this definition">¶</a></dt>
+<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">EnvConfig</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">_case_sensitive</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">bool</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_env_prefix</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_env_file</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">DotenvType</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">PosixPath('.')</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_env_file_encoding</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_env_nested_delimiter</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">_secrets_dir</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">Path</span><span class="w"> </span><span class="p"><span class="pre">|</span></span><span class="w"> </span><span class="pre">None</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em>, <em class="sig-param"><span class="o"><span class="pre">*</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">authorization</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Any</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">video_source</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Path</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">video_host</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">IPv4Address</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'127.0.0.1'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">video_port</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">8000</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">session_duration</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">3600</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">file_formats</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Sequence</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">]</span></span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">('.mov',</span> <span class="pre">'.mp4')</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">workers</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">1</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">website</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Optional</span><span class="p"><span class="pre">[</span></span><span class="pre">List</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">]</span></span><span class="p"><span class="pre">]</span></span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">[]</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">auto_thumbnail</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">bool</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">True</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.config.EnvConfig" title="Permalink to this definition">¶</a></dt>
 <dd><p>Configure all env vars and validate using <code class="docutils literal notranslate"><span class="pre">pydantic</span></code> to share across modules.</p>
 <div class="doctest highlight-default notranslate"><div class="highlight"><pre><span></span><span class="gp">&gt;&gt;&gt; </span><span class="n">EnvConfig</span>
 </pre></div>
@@ -167,18 +199,8 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 <p><cite>__init__</cite> uses <cite>__pydantic_self__</cite> instead of the more common <cite>self</cite> for the first arg to
 allow <cite>self</cite> as a field name.</p>
 <dl class="py attribute">
-<dt class="sig sig-object py" id="pystream.models.config.EnvConfig.username">
-<span class="sig-name descname"><span class="pre">username</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">str</span></em><a class="headerlink" href="#pystream.models.config.EnvConfig.username" title="Permalink to this definition">¶</a></dt>
-<dd></dd></dl>
-
-<dl class="py attribute">
-<dt class="sig sig-object py" id="pystream.models.config.EnvConfig.password">
-<span class="sig-name descname"><span class="pre">password</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">SecretStr</span></em><a class="headerlink" href="#pystream.models.config.EnvConfig.password" title="Permalink to this definition">¶</a></dt>
-<dd></dd></dl>
-
-<dl class="py attribute">
-<dt class="sig sig-object py" id="pystream.models.config.EnvConfig.secret">
-<span class="sig-name descname"><span class="pre">secret</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">SecretStr</span></em><a class="headerlink" href="#pystream.models.config.EnvConfig.secret" title="Permalink to this definition">¶</a></dt>
+<dt class="sig sig-object py" id="pystream.models.config.EnvConfig.authorization">
+<span class="sig-name descname"><span class="pre">authorization</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">Any</span></em><a class="headerlink" href="#pystream.models.config.EnvConfig.authorization" title="Permalink to this definition">¶</a></dt>
 <dd></dd></dl>
 
 <dl class="py attribute">
@@ -247,6 +269,12 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 
 </dd></dl>
 
+<dl class="py method">
+<dt class="sig sig-object py" id="pystream.models.config.EnvConfig.parse_authorization">
+<em class="property"><span class="pre">classmethod</span><span class="w"> </span></em><span class="sig-name descname"><span class="pre">parse_authorization</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">value</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Any</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">Dict</span><span class="p"><span class="pre">[</span></span><span class="pre">str</span><span class="p"><span class="pre">,</span></span><span class="w"> </span><span class="pre">SecretStr</span><span class="p"><span class="pre">]</span></span></span></span><a class="headerlink" href="#pystream.models.config.EnvConfig.parse_authorization" title="Permalink to this definition">¶</a></dt>
+<dd><p>Validates the authorization parameter.</p>
+</dd></dl>
+
 <dl class="py method">
 <dt class="sig sig-object py" id="pystream.models.config.EnvConfig.parse_video_host">
 <em class="property"><span class="pre">classmethod</span><span class="w"> </span></em><span class="sig-name descname"><span class="pre">parse_video_host</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">value</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">IPv4Address</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">str</span></span></span><a class="headerlink" href="#pystream.models.config.EnvConfig.parse_video_host" title="Permalink to this definition">¶</a></dt>
@@ -292,7 +320,7 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 
 <dl class="py class">
 <dt class="sig sig-object py" id="pystream.models.config.Static">
-<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">Static</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="o"><span class="pre">*</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">track</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'track'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">stream</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'stream'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">preview</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'preview'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">query_param</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'file'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">home_endpoint</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'/home'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">login_endpoint</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'/login'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">logout_endpoint</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'/logout'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">streaming_endpoint</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'/video'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">chunk_size</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">1048576</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">deletions</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Set</span><span class="p"><span class="pre">[</span></span><span class="pre">PosixPath</span><span class="p"><span class="pre">]</span></span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">{}</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">session_token</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">'kz44gggJYuC9O2D8r9yUu6bnzQvamheb'</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.config.Static" title="Permalink to this definition">¶</a></dt>
+<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">Static</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">*</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">track:</span> <span class="pre">str</span> <span class="pre">=</span> <span class="pre">'track'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">stream:</span> <span class="pre">str</span> <span class="pre">=</span> <span class="pre">'stream'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">preview:</span> <span class="pre">str</span> <span class="pre">=</span> <span class="pre">'preview'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">query_param:</span> <span class="pre">str</span> <span class="pre">=</span> <span class="pre">'file'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">home_endpoint:</span> <span class="pre">str</span> <span class="pre">=</span> <span class="pre">'/home'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">login_endpoint:</span> <span class="pre">str</span> <span class="pre">=</span> <span class="pre">'/login'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">logout_endpoint:</span> <span class="pre">str</span> <span class="pre">=</span> <span class="pre">'/logout'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">streaming_endpoint:</span> <span class="pre">str</span> <span class="pre">=</span> <span class="pre">'/video'</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">chunk_size:</span> <span class="pre">int</span> <span class="pre">=</span> <span class="pre">1048576</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">deletions:</span> <span class="pre">~typing.Set[~pathlib.PosixPath]</span> <span class="pre">=</span> <span class="pre">{}</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">cipher_suite:</span> <span class="pre">~cryptography.fernet.Fernet</span> <span class="pre">=</span> <span class="pre">&lt;cryptography.fernet.Fernet</span> <span class="pre">object&gt;</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.config.Static" title="Permalink to this definition">¶</a></dt>
 <dd><p>Object to store static values.</p>
 <div class="doctest highlight-default notranslate"><div class="highlight"><pre><span></span><span class="gp">&gt;&gt;&gt; </span><span class="n">Static</span>
 </pre></div>
@@ -353,15 +381,26 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 <dd></dd></dl>
 
 <dl class="py attribute">
-<dt class="sig sig-object py" id="pystream.models.config.Static.session_token">
-<span class="sig-name descname"><span class="pre">session_token</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">str</span></em><a class="headerlink" href="#pystream.models.config.Static.session_token" title="Permalink to this definition">¶</a></dt>
+<dt class="sig sig-object py" id="pystream.models.config.Static.cipher_suite">
+<span class="sig-name descname"><span class="pre">cipher_suite</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">Fernet</span></em><a class="headerlink" href="#pystream.models.config.Static.cipher_suite" title="Permalink to this definition">¶</a></dt>
+<dd></dd></dl>
+
+<dl class="py class">
+<dt class="sig sig-object py" id="pystream.models.config.Static.Config">
+<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-name descname"><span class="pre">Config</span></span><a class="headerlink" href="#pystream.models.config.Static.Config" title="Permalink to this definition">¶</a></dt>
+<dd><p>Static configuration.</p>
+<dl class="py attribute">
+<dt class="sig sig-object py" id="pystream.models.config.Static.Config.arbitrary_types_allowed">
+<span class="sig-name descname"><span class="pre">arbitrary_types_allowed</span></span><em class="property"><span class="w"> </span><span class="p"><span class="pre">=</span></span><span class="w"> </span><span class="pre">True</span></em><a class="headerlink" href="#pystream.models.config.Static.Config.arbitrary_types_allowed" title="Permalink to this definition">¶</a></dt>
 <dd></dd></dl>
 
 </dd></dl>
 
+</dd></dl>
+
 <dl class="py class">
 <dt class="sig sig-object py" id="pystream.models.config.Session">
-<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">Session</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="o"><span class="pre">*</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">info</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">dict</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">{}</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">invalid</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">dict</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">{}</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.config.Session" title="Permalink to this definition">¶</a></dt>
+<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">Session</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="o"><span class="pre">*</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">info</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">dict</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">{}</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">invalid</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">dict</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">{}</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">mapping</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">dict</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">{}</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.config.Session" title="Permalink to this definition">¶</a></dt>
 <dd><p>Object to store session information.</p>
 <div class="doctest highlight-default notranslate"><div class="highlight"><pre><span></span><span class="gp">&gt;&gt;&gt; </span><span class="n">Session</span>
 </pre></div>
@@ -381,12 +420,17 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 <span class="sig-name descname"><span class="pre">invalid</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">dict</span></em><a class="headerlink" href="#pystream.models.config.Session.invalid" title="Permalink to this definition">¶</a></dt>
 <dd></dd></dl>
 
+<dl class="py attribute">
+<dt class="sig sig-object py" id="pystream.models.config.Session.mapping">
+<span class="sig-name descname"><span class="pre">mapping</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">dict</span></em><a class="headerlink" href="#pystream.models.config.Session.mapping" title="Permalink to this definition">¶</a></dt>
+<dd></dd></dl>
+
 </dd></dl>
 
 <dl class="py class">
 <dt class="sig sig-object py" id="pystream.models.config.WebToken">
-<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">WebToken</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="o"><span class="pre">*</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">token</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">timestamp</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.config.WebToken" title="Permalink to this definition">¶</a></dt>
-<dd><p>Object to store and validate JWT objects.</p>
+<em class="property"><span class="pre">class</span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.config.</span></span><span class="sig-name descname"><span class="pre">WebToken</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="o"><span class="pre">*</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">token</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">username</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">timestamp</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.config.WebToken" title="Permalink to this definition">¶</a></dt>
+<dd><p>Object to store and validate the symmetric ecrypted payload.</p>
 <div class="doctest highlight-default notranslate"><div class="highlight"><pre><span></span><span class="gp">&gt;&gt;&gt; </span><span class="n">WebToken</span>
 </pre></div>
 </div>
@@ -400,6 +444,11 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 <span class="sig-name descname"><span class="pre">token</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">str</span></em><a class="headerlink" href="#pystream.models.config.WebToken.token" title="Permalink to this definition">¶</a></dt>
 <dd></dd></dl>
 
+<dl class="py attribute">
+<dt class="sig sig-object py" id="pystream.models.config.WebToken.username">
+<span class="sig-name descname"><span class="pre">username</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">str</span></em><a class="headerlink" href="#pystream.models.config.WebToken.username" title="Permalink to this definition">¶</a></dt>
+<dd></dd></dl>
+
 <dl class="py attribute">
 <dt class="sig sig-object py" id="pystream.models.config.WebToken.timestamp">
 <span class="sig-name descname"><span class="pre">timestamp</span></span><em class="property"><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="pre">int</span></em><a class="headerlink" href="#pystream.models.config.WebToken.timestamp" title="Permalink to this definition">¶</a></dt>
@@ -459,7 +508,7 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 </dl>
 <dl class="py method">
 <dt class="sig sig-object py" id="pystream.models.images.Images.generate_thumbnails">
-<span class="sig-name descname"><span class="pre">generate_thumbnails</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">interval</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">1</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">output_dir</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">PosixPath</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">bool</span></span></span><a class="headerlink" href="#pystream.models.images.Images.generate_thumbnails" title="Permalink to this definition">¶</a></dt>
+<span class="sig-name descname"><span class="pre">generate_thumbnails</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">interval</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">1</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">output_dir</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Optional</span><span class="p"><span class="pre">[</span></span><span class="pre">PosixPath</span><span class="p"><span class="pre">]</span></span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">bool</span></span></span><a class="headerlink" href="#pystream.models.images.Images.generate_thumbnails" title="Permalink to this definition">¶</a></dt>
 <dd><p>Generate thumbnails for a video file.</p>
 <dl class="field-list simple">
 <dt class="field-odd">Parameters<span class="colon">:</span></dt>
@@ -493,7 +542,7 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 
 <dl class="py method">
 <dt class="sig sig-object py" id="pystream.models.images.Images.generate_preview">
-<span class="sig-name descname"><span class="pre">generate_preview</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">path</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">at_second</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">bool</span></span></span><a class="headerlink" href="#pystream.models.images.Images.generate_preview" title="Permalink to this definition">¶</a></dt>
+<span class="sig-name descname"><span class="pre">generate_preview</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">path</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">at_second</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Optional</span><span class="p"><span class="pre">[</span></span><span class="pre">int</span><span class="p"><span class="pre">]</span></span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">None</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">bool</span></span></span><a class="headerlink" href="#pystream.models.images.Images.generate_preview" title="Permalink to this definition">¶</a></dt>
 <dd><p>Generate preview image for a video.</p>
 <dl class="field-list simple">
 <dt class="field-odd">Parameters<span class="colon">:</span></dt>
@@ -513,6 +562,39 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 
 </dd></dl>
 
+</section>
+<section id="module-pystream.models.secure">
+<span id="secure"></span><h1>Secure<a class="headerlink" href="#module-pystream.models.secure" title="Permalink to this heading">¶</a></h1>
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.secure.calculate_hash">
+<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.secure.</span></span><span class="sig-name descname"><span class="pre">calculate_hash</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">value</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Any</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">str</span></span></span><a class="headerlink" href="#pystream.models.secure.calculate_hash" title="Permalink to this definition">¶</a></dt>
+<dd><p>Generate hash value for the given payload.</p>
+</dd></dl>
+
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.secure.base64_encode">
+<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.secure.</span></span><span class="sig-name descname"><span class="pre">base64_encode</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">value</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Any</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">str</span></span></span><a class="headerlink" href="#pystream.models.secure.base64_encode" title="Permalink to this definition">¶</a></dt>
+<dd><p>Base64 encode the given payload.</p>
+</dd></dl>
+
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.secure.base64_decode">
+<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.secure.</span></span><span class="sig-name descname"><span class="pre">base64_decode</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">value</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Any</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">str</span></span></span><a class="headerlink" href="#pystream.models.secure.base64_decode" title="Permalink to this definition">¶</a></dt>
+<dd><p>Base64 decode the given payload.</p>
+</dd></dl>
+
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.secure.hex_decode">
+<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.secure.</span></span><span class="sig-name descname"><span class="pre">hex_decode</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">value</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Any</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">str</span></span></span><a class="headerlink" href="#pystream.models.secure.hex_decode" title="Permalink to this definition">¶</a></dt>
+<dd><p>Convert hex value to a string.</p>
+</dd></dl>
+
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.secure.hex_encode">
+<em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.models.secure.</span></span><span class="sig-name descname"><span class="pre">hex_encode</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">value</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span></em><span class="sig-paren">)</span><a class="headerlink" href="#pystream.models.secure.hex_encode" title="Permalink to this definition">¶</a></dt>
+<dd><p>Convert string value to hex.</p>
+</dd></dl>
+
 </section>
 <section id="module-pystream.models.squire">
 <span id="squire"></span><h1>Squire<a class="headerlink" href="#module-pystream.models.squire" title="Permalink to this heading">¶</a></h1>
@@ -608,6 +690,20 @@ <h1>Models<a class="headerlink" href="#models" title="Permalink to this heading"
 </dl>
 </dd></dl>
 
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.models.squire.keygen">
+<span class="sig-prename descclassname"><span class="pre">pystream.models.squire.</span></span><span class="sig-name descname"><span class="pre">keygen</span></span><span class="sig-paren">(</span><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">str</span></span></span><a class="headerlink" href="#pystream.models.squire.keygen" title="Permalink to this definition">¶</a></dt>
+<dd><p>Generate session token from secrets module, so that users are forced to log in when the server restarts.</p>
+<dl class="field-list simple">
+<dt class="field-odd">Returns<span class="colon">:</span></dt>
+<dd class="field-odd"><p>Returns a URL safe 64-bit token.</p>
+</dd>
+<dt class="field-even">Return type<span class="colon">:</span></dt>
+<dd class="field-even"><p>str</p>
+</dd>
+</dl>
+</dd></dl>
+
 </section>
 <section id="module-pystream.models.stream">
 <span id="stream"></span><h1>Stream<a class="headerlink" href="#module-pystream.models.stream" title="Permalink to this heading">¶</a></h1>
@@ -700,6 +796,26 @@ <h1>Routers<a class="headerlink" href="#routers" title="Permalink to this headin
 </section>
 <section id="module-pystream.routers.auth">
 <span id="authentication"></span><h1>Authentication<a class="headerlink" href="#module-pystream.routers.auth" title="Permalink to this heading">¶</a></h1>
+<dl class="py function">
+<dt class="sig sig-object py" id="pystream.routers.auth.get_expiry">
+<span class="sig-prename descclassname"><span class="pre">pystream.routers.auth.</span></span><span class="sig-name descname"><span class="pre">get_expiry</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">lease_start</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">lease_duration</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">int</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">str</span></span></span><a class="headerlink" href="#pystream.routers.auth.get_expiry" title="Permalink to this definition">¶</a></dt>
+<dd><p>Get expiry datetime as string using max age.</p>
+<dl class="field-list simple">
+<dt class="field-odd">Parameters<span class="colon">:</span></dt>
+<dd class="field-odd"><ul class="simple">
+<li><p><strong>lease_start</strong> – Time when the authentication was made.</p></li>
+<li><p><strong>lease_duration</strong> – Number of seconds until expiry.</p></li>
+</ul>
+</dd>
+<dt class="field-even">Returns<span class="colon">:</span></dt>
+<dd class="field-even"><p>Returns the date and time of expiry in GMT.</p>
+</dd>
+<dt class="field-odd">Return type<span class="colon">:</span></dt>
+<dd class="field-odd"><p>str</p>
+</dd>
+</dl>
+</dd></dl>
+
 <dl class="py function">
 <dt class="sig sig-object py" id="pystream.routers.auth.home_page">
 <em class="property"><span class="k"><span class="pre">async</span></span><span class="w"> </span></em><span class="sig-prename descclassname"><span class="pre">pystream.routers.auth.</span></span><span class="sig-name descname"><span class="pre">home_page</span></span><span class="sig-paren">(</span><em class="sig-param"><span class="n"><span class="pre">request</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">Request</span></span></em>, <em class="sig-param"><span class="n"><span class="pre">session_token</span></span><span class="p"><span class="pre">:</span></span><span class="w"> </span><span class="n"><span class="pre">str</span></span><span class="w"> </span><span class="o"><span class="pre">=</span></span><span class="w"> </span><span class="default_value"><span class="pre">Cookie(None)</span></span></em><span class="sig-paren">)</span> <span class="sig-return"><span class="sig-return-icon">&#x2192;</span> <span class="sig-return-typehint"><span class="pre">TemplateResponse</span></span></span><a class="headerlink" href="#pystream.routers.auth.home_page" title="Permalink to this definition">¶</a></dt>
@@ -994,6 +1110,7 @@ <h3><a href="#">Table of Contents</a></h3>
 <li><a class="reference internal" href="#module-pystream.models.authenticator">Authenticator</a></li>
 <li><a class="reference internal" href="#module-pystream.models.config">Config</a></li>
 <li><a class="reference internal" href="#module-pystream.models.images">Images</a></li>
+<li><a class="reference internal" href="#module-pystream.models.secure">Secure</a></li>
 <li><a class="reference internal" href="#module-pystream.models.squire">Squire</a></li>
 <li><a class="reference internal" href="#module-pystream.models.stream">Stream</a></li>
 <li><a class="reference internal" href="#module-pystream.models.subtitles">Subtitles</a></li>
@@ -1011,7 +1128,7 @@ <h3><a href="#">Table of Contents</a></h3>
   <div>
     <h4>Next topic</h4>
     <p class="topless"><a href="README.html"
-                          title="next chapter">Video Streaming</a></p>
+                          title="next chapter">PyStream</a></p>
   </div>
   <div role="note" aria-label="source link">
     <h3>This Page</h3>
@@ -1044,7 +1161,7 @@ <h3>Navigation</h3>
           <a href="py-modindex.html" title="Python Module Index"
              >modules</a> |</li>
         <li class="right" >
-          <a href="README.html" title="Video Streaming"
+          <a href="README.html" title="PyStream"
              >next</a> |</li>
         <li class="nav-item nav-item-0"><a href="#">Stream  documentation</a> &#187;</li>
         <li class="nav-item nav-item-this"><a href="">Stream-Localhost - A secured interface to stream videos</a></li> 
diff --git a/docs/objects.inv b/docs/objects.inv
index f65a1da..7775b9d 100644
Binary files a/docs/objects.inv and b/docs/objects.inv differ
diff --git a/docs/py-modindex.html b/docs/py-modindex.html
index 976c788..ba3a9b2 100644
--- a/docs/py-modindex.html
+++ b/docs/py-modindex.html
@@ -82,6 +82,11 @@ <h1>Python Module Index</h1>
        <td>&#160;&#160;&#160;
        <a href="index.html#module-pystream.models.images"><code class="xref">pystream.models.images</code></a></td><td>
        <em></em></td></tr>
+     <tr class="cg-1">
+       <td></td>
+       <td>&#160;&#160;&#160;
+       <a href="index.html#module-pystream.models.secure"><code class="xref">pystream.models.secure</code></a></td><td>
+       <em></em></td></tr>
      <tr class="cg-1">
        <td></td>
        <td>&#160;&#160;&#160;
diff --git a/docs/searchindex.js b/docs/searchindex.js
index e8c1dee..a315ad6 100644
--- a/docs/searchindex.js
+++ b/docs/searchindex.js
@@ -1 +1 @@
-Search.setIndex({"docnames": ["README", "index"], "filenames": ["README.md", "index.rst"], "titles": ["Video Streaming", "Stream-Localhost - A secured interface to stream videos"], "terms": {"deploy": 0, "python": 0, "modul": 0, "via": 0, "authent": 0, "session": [0, 1], "us": [0, 1], "fastapi": [0, 1], "m": 0, "pip": 0, "localhost": 0, "import": 0, "asyncio": 0, "o": 0, "pystream": [0, 1], "__name__": 0, "__main__": 0, "kwarg": [0, 1], "dict": [0, 1], "usernam": [0, 1], "foo": 0, "password": [0, 1], "bar": 0, "video_sourc": [0, 1], "path": [0, 1], "join": 0, "expandus": 0, "download": 0, "add": [0, 1], "follow": 0, "host": [0, 1], "local": [0, 1], "ip": [0, 1], "address": [0, 1], "skip": 0, "127": [0, 1], "0": [0, 1], "1": [0, 1], "video_host": [0, 1], "util": 0, "get_local_ip": [0, 1], "run": [0, 1], "start": [0, 1], "bulb": 0, "environ": [0, 1], "can": 0, "option": [0, 1], "load": [0, 1], "from": [0, 1], "ani": 0, "file": [0, 1], "refer": [0, 1], "wiki": 0, "page": [0, 1], "more": [0, 1], "inform": [0, 1], "mandatori": 0, "choic": 0, "secret": [0, 1], "privat": [0, 1], "kei": [0, 1], "encod": 0, "decod": [0, 1], "jwt": [0, 1], "_": 0, "sourc": [0, 1], "underscor": 0, "dot": 0, "ignor": [0, 1], "default": 0, "port": 0, "number": [0, 1], "applic": 0, "8000": [0, 1], "format": 0, "sequenc": [0, 1], "support": 0, "mp4": [0, 1], "mov": [0, 1], "worker": [0, 1], "spin": 0, "up": 0, "uvicorn": 0, "server": 0, "websit": [0, 1], "list": [0, 1], "regex": 0, "cor": 0, "configur": [0, 1], "requir": [0, 1], "onli": [0, 1], "tunnel": 0, "cdn": 0, "auto": 0, "thumbnail": [0, 1], "boolean": [0, 1], "flag": [0, 1], "gener": [0, 1], "imag": 0, "preview": [0, 1], "true": [0, 1], "docstr": 0, "googl": 0, "style": 0, "convent": 0, "pep": 0, "8": 0, "isort": 0, "gitvers": 0, "revers": 0, "f": 0, "release_not": 0, "rst": 0, "t": [0, 1], "pre": 0, "commit": 0, "ensur": 0, "pytest": 0, "valid": [0, 1], "hyperlink": 0, "all": [0, 1], "markdown": 0, "includ": [0, 1], "sphinx": 0, "5": 0, "recommonmark": 0, "http": [0, 1], "org": 0, "project": 0, "thevickypedia": 0, "github": 0, "io": 0, "vignesh": 0, "rao": 0, "under": 0, "mit": 0, "instal": 1, "sampl": 1, "usag": 1, "code": 1, "standard": 1, "releas": 1, "note": 1, "lint": 1, "pypi": 1, "packag": 1, "runbook": 1, "licens": 1, "copyright": 1, "async": 1, "redirect_exception_handl": 1, "request": 1, "except": 1, "redirectexcept": 1, "jsonrespons": 1, "custom": 1, "handler": 1, "handl": 1, "redirect": 1, "paramet": 1, "take": 1, "object": 1, "an": 1, "argument": 1, "inherit": 1, "return": 1, "content": 1, "statu": 1, "cooki": 1, "type": 1, "startup_task": 1, "none": 1, "task": 1, "need": 1, "dure": 1, "api": 1, "startup": 1, "shutdown_task": 1, "shutdown": 1, "starter": 1, "function": 1, "keyword": 1, "env": 1, "failed_auth_count": 1, "keep": 1, "track": 1, "fail": 1, "login": 1, "attempt": 1, "each": 1, "3": 1, "time": 1, "verify_login": 1, "verifi": 1, "json": 1, "respons": 1, "verify_token": 1, "token": 1, "str": 1, "expir": 1, "web": 1, "rais": 1, "class": 1, "envconfig": 1, "_case_sensit": 1, "bool": 1, "_env_prefix": 1, "_env_fil": 1, "dotenvtyp": 1, "posixpath": 1, "_env_file_encod": 1, "_env_nested_delimit": 1, "_secrets_dir": 1, "secretstr": 1, "ipv4address": 1, "video_port": 1, "int": 1, "session_dur": 1, "3600": 1, "file_format": 1, "auto_thumbnail": 1, "var": 1, "pydant": 1, "share": 1, "across": 1, "creat": 1, "new": 1, "pars": 1, "input": 1, "data": 1, "validationerror": 1, "pydantic_cor": 1, "cannot": 1, "form": 1, "__init__": 1, "__pydantic_self__": 1, "instead": 1, "common": 1, "self": 1, "first": 1, "arg": 1, "allow": 1, "field": 1, "name": 1, "variabl": 1, "env_prefix": 1, "env_fil": 1, "extra": 1, "hide_input_in_error": 1, "classmethod": 1, "parse_video_host": 1, "valu": 1, "string": 1, "notion": 1, "parse_websit": 1, "evalu": 1, "fileio": 1, "index": 1, "html": 1, "land": 1, "static": 1, "query_param": 1, "home_endpoint": 1, "home": 1, "login_endpoint": 1, "logout_endpoint": 1, "logout": 1, "streaming_endpoint": 1, "chunk_siz": 1, "1048576": 1, "delet": 1, "set": 1, "session_token": 1, "kz44gggjyuc9o2d8r9yuu6bnzqvamheb": 1, "store": 1, "info": 1, "invalid": 1, "webtoken": 1, "timestamp": 1, "locat": 1, "detail": 1, "within": 1, "sinc": 1, "httpexcept": 1, "doesn": 1, "demand": 1, "case": 1, "where": 1, "i": 1, "solut": 1, "There": 1, "ar": 1, "altern": 1, "work": 1, "our": 1, "javascript": 1, "thi": 1, "wai": 1, "come": 1, "handi": 1, "mani": 1, "unexpect": 1, "scenario": 1, "tiangolo": 1, "com": 1, "tutori": 1, "error": 1, "instanti": 1, "reason": 1, "alia": 1, "filepath": 1, "initi": 1, "captur": 1, "frame": 1, "particular": 1, "opencv": 1, "": 1, "videocaptur": 1, "generate_thumbnail": 1, "interv": 1, "output_dir": 1, "second": 1, "output": 1, "directori": 1, "success": 1, "failur": 1, "get_video_length": 1, "tupl": 1, "timedelta": 1, "get": 1, "calcul": 1, "length": 1, "datetim": 1, "generate_preview": 1, "at_second": 1, "which": 1, "should": 1, "log_connect": 1, "log": 1, "connect": 1, "devic": 1, "avoid": 1, "multipl": 1, "when": 1, "same": 1, "differ": 1, "natural_sort_kei": 1, "filenam": 1, "union": 1, "sort": 1, "natur": 1, "element": 1, "deriv": 1, "split": 1, "part": 1, "regular": 1, "express": 1, "get_dir_stream_cont": 1, "parent": 1, "subdir": 1, "insid": 1, "displai": 1, "subdirectori": 1, "exist": 1, "dictionari": 1, "pair": 1, "get_all_stream_cont": 1, "folder": 1, "contain": 1, "section": 1, "get_it": 1, "purepath": 1, "current": 1, "serv": 1, "previou": 1, "next": 1, "render": 1, "remove_thumbnail": 1, "img_path": 1, "trigger": 1, "timer": 1, "remov": 1, "send_bytes_range_request": 1, "file_obj": 1, "binaryio": 1, "start_rang": 1, "end_rang": 1, "asynciter": 1, "bytestr": 1, "send": 1, "chunk": 1, "rang": 1, "specif": 1, "rfc7233": 1, "byte": 1, "end": 1, "yield": 1, "iter": 1, "get_range_head": 1, "range_head": 1, "file_s": 1, "proce": 1, "header": 1, "size": 1, "range_requests_respons": 1, "file_path": 1, "streamingrespons": 1, "given": 1, "srt_to_vtt": 1, "convert": 1, "srt": 1, "vtt": 1, "compat": 1, "j": 1, "vtt_to_srt": 1, "auth": 1, "home_pag": 1, "templaterespons": 1, "ui": 1, "after": 1, "user": 1, "htmlrespons": 1, "termin": 1, "back": 1, "upon": 1, "refresh": 1, "base": 1, "get_favicon": 1, "filerespons": 1, "favicon": 1, "ico": 1, "endpoint": 1, "robinhood": 1, "script": 1, "root": 1, "redirectrespons": 1, "broken": 1, "relat": 1, "preview_load": 1, "ha": 1, "setup": 1, "track_load": 1, "track_path": 1, "stream_video": 1, "video_path": 1, "templat": 1, "video_endpoint": 1, "receiv": 1, "rootfilt": 1, "filter": 1, "while": 1, "preserv": 1, "other": 1, "access": 1, "200": 1, "ok": 1, "307": 1, "temporari": 1, "vid_nam": 1, "redund": 1, "pass": 1, "overrid": 1, "implement": 1, "subclass": 1, "The": 1, "method": 1, "record": 1, "examin": 1, "fals": 1, "discard": 1, "togeth": 1, "its": 1, "children": 1, "have": 1, "event": 1, "through": 1, "If": 1, "specifi": 1, "everi": 1, "logrecord": 1, "out": 1, "repres": 1, "someth": 1, "simpl": 1, "check": 1, "network": 1, "id": 1, "retriev": 1, "machin": 1, "get_public_ip": 1, "extract": 1, "public": 1, "make": 1, "extern": 1, "search": 1}, "objects": {"pystream": [[1, 0, 0, "-", "logger"], [1, 0, 0, "-", "main"], [1, 0, 0, "-", "utils"]], "pystream.logger": [[1, 1, 1, "", "RootFilter"]], "pystream.logger.RootFilter": [[1, 2, 1, "", "filter"]], "pystream.main": [[1, 3, 1, "", "redirect_exception_handler"], [1, 3, 1, "", "shutdown_tasks"], [1, 3, 1, "", "start"], [1, 3, 1, "", "startup_tasks"]], "pystream.models": [[1, 0, 0, "-", "authenticator"], [1, 0, 0, "-", "config"], [1, 0, 0, "-", "images"], [1, 0, 0, "-", "squire"], [1, 0, 0, "-", "stream"], [1, 0, 0, "-", "subtitles"]], "pystream.models.authenticator": [[1, 3, 1, "", "failed_auth_counter"], [1, 3, 1, "", "verify_login"], [1, 3, 1, "", "verify_token"]], "pystream.models.config": [[1, 1, 1, "", "EnvConfig"], [1, 1, 1, "", "FileIO"], [1, 5, 1, "", "RedirectException"], [1, 1, 1, "", "Session"], [1, 1, 1, "", "Static"], [1, 1, 1, "", "WebToken"], [1, 4, 1, "", "env"]], "pystream.models.config.EnvConfig": [[1, 1, 1, "", "Config"], [1, 4, 1, "", "auto_thumbnail"], [1, 4, 1, "", "file_formats"], [1, 2, 1, "", "parse_video_host"], [1, 2, 1, "", "parse_website"], [1, 4, 1, "", "password"], [1, 4, 1, "", "secret"], [1, 4, 1, "", "session_duration"], [1, 4, 1, "", "username"], [1, 4, 1, "", "video_host"], [1, 4, 1, "", "video_port"], [1, 4, 1, "", "video_source"], [1, 4, 1, "", "website"], [1, 4, 1, "", "workers"]], "pystream.models.config.EnvConfig.Config": [[1, 4, 1, "", "env_file"], [1, 4, 1, "", "env_prefix"], [1, 4, 1, "", "extra"], [1, 4, 1, "", "hide_input_in_errors"]], "pystream.models.config.FileIO": [[1, 4, 1, "", "index"], [1, 4, 1, "", "landing"], [1, 4, 1, "", "listing"]], "pystream.models.config.Session": [[1, 4, 1, "", "info"], [1, 4, 1, "", "invalid"]], "pystream.models.config.Static": [[1, 4, 1, "", "chunk_size"], [1, 4, 1, "", "deletions"], [1, 4, 1, "", "home_endpoint"], [1, 4, 1, "", "login_endpoint"], [1, 4, 1, "", "logout_endpoint"], [1, 4, 1, "", "preview"], [1, 4, 1, "", "query_param"], [1, 4, 1, "", "session_token"], [1, 4, 1, "", "stream"], [1, 4, 1, "", "streaming_endpoint"], [1, 4, 1, "", "track"]], "pystream.models.config.WebToken": [[1, 4, 1, "", "timestamp"], [1, 4, 1, "", "token"]], "pystream.models.images": [[1, 1, 1, "", "Images"]], "pystream.models.images.Images": [[1, 2, 1, "", "generate_preview"], [1, 2, 1, "", "generate_thumbnails"], [1, 2, 1, "", "get_video_length"]], "pystream.models.squire": [[1, 3, 1, "", "get_all_stream_content"], [1, 3, 1, "", "get_dir_stream_content"], [1, 3, 1, "", "get_iter"], [1, 3, 1, "", "log_connection"], [1, 3, 1, "", "natural_sort_key"], [1, 3, 1, "", "remove_thumbnail"]], "pystream.models.stream": [[1, 3, 1, "", "get_range_header"], [1, 3, 1, "", "range_requests_response"], [1, 3, 1, "", "send_bytes_range_requests"]], "pystream.models.subtitles": [[1, 3, 1, "", "srt_to_vtt"], [1, 3, 1, "", "vtt_to_srt"]], "pystream.routers": [[1, 0, 0, "-", "auth"], [1, 0, 0, "-", "basics"], [1, 0, 0, "-", "video"]], "pystream.routers.auth": [[1, 3, 1, "", "home_page"], [1, 3, 1, "", "login"], [1, 3, 1, "", "logout"]], "pystream.routers.basics": [[1, 3, 1, "", "error"], [1, 3, 1, "", "get_favicon"], [1, 3, 1, "", "root"]], "pystream.routers.video": [[1, 3, 1, "", "preview_loader"], [1, 3, 1, "", "stream_video"], [1, 3, 1, "", "track_loader"], [1, 3, 1, "", "video_endpoint"]], "pystream.utils": [[1, 3, 1, "", "get_local_ip"], [1, 3, 1, "", "get_public_ip"]]}, "objtypes": {"0": "py:module", "1": "py:class", "2": "py:method", "3": "py:function", "4": "py:attribute", "5": "py:exception"}, "objnames": {"0": ["py", "module", "Python module"], "1": ["py", "class", "Python class"], "2": ["py", "method", "Python method"], "3": ["py", "function", "Python function"], "4": ["py", "attribute", "Python attribute"], "5": ["py", "exception", "Python exception"]}, "titleterms": {"video": [0, 1], "stream": [0, 1], "instal": 0, "sampl": 0, "usag": 0, "env": 0, "variabl": 0, "code": 0, "standard": 0, "releas": 0, "note": 0, "lint": 0, "pypi": 0, "packag": 0, "runbook": 0, "licens": 0, "copyright": 0, "localhost": 1, "A": 1, "secur": 1, "interfac": 1, "read": 1, "me": 1, "main": 1, "modul": 1, "model": 1, "authent": 1, "config": 1, "imag": 1, "squir": 1, "subtitl": 1, "router": 1, "basic": 1, "support": 1, "logger": 1, "util": 1, "indic": 1, "tabl": 1}, "envversion": {"sphinx.domains.c": 2, "sphinx.domains.changeset": 1, "sphinx.domains.citation": 1, "sphinx.domains.cpp": 6, "sphinx.domains.index": 1, "sphinx.domains.javascript": 2, "sphinx.domains.math": 2, "sphinx.domains.python": 3, "sphinx.domains.rst": 2, "sphinx.domains.std": 2, "sphinx": 56}})
\ No newline at end of file
+Search.setIndex({"docnames": ["README", "authentication", "index"], "filenames": ["README.md", "authentication.md", "index.rst"], "titles": ["PyStream", "Authentication", "Stream-Localhost - A secured interface to stream videos"], "terms": {"deploy": 0, "python": 0, "modul": 0, "stream": [0, 1], "video": 0, "via": [0, 2], "authent": 0, "session": [0, 2], "us": [0, 1, 2], "fastapi": [0, 1, 2], "m": 0, "pip": 0, "localhost": 0, "import": 0, "asyncio": 0, "o": 0, "__name__": 0, "__main__": 0, "kwarg": [0, 2], "dict": [0, 2], "author": [0, 1, 2], "alan": 0, "ture": 0, "pr0gramm1ng": 0, "linu": 0, "torvald": 0, "linuxo": 0, "video_sourc": [0, 2], "path": [0, 2], "join": 0, "expandus": 0, "download": 0, "add": [0, 2], "follow": [0, 1], "host": [0, 2], "local": [0, 2], "ip": [0, 2], "address": [0, 2], "skip": 0, "127": [0, 2], "0": [0, 2], "1": [0, 2], "video_host": [0, 2], "util": 0, "get_local_ip": [0, 2], "run": [0, 2], "start": [0, 2], "bulb": 0, "environ": [0, 2], "can": [0, 1], "load": [0, 2], "from": [0, 1, 2], "ani": [0, 2], "file": [0, 2], "filenam": [0, 2], "default": 0, "To": 0, "custom": [0, 2], "set": [0, 2], "var": [0, 2], "env_fil": [0, 2], "kei": [0, 1, 2], "its": [0, 2], "valu": [0, 1, 2], "mandatori": 0, "dictionari": [0, 2], "pair": [0, 2], "usernam": [0, 2], "password": [0, 2], "_": 0, "sourc": [0, 2], "underscor": 0, "dot": 0, "ignor": [0, 2], "option": [0, 2], "port": 0, "number": [0, 2], "applic": 0, "8000": [0, 2], "format": 0, "sequenc": [0, 2], "support": 0, "mp4": [0, 2], "mov": [0, 2], "worker": [0, 2], "spin": 0, "up": 0, "uvicorn": 0, "server": [0, 1, 2], "websit": [0, 2], "list": [0, 2], "regex": 0, "cor": 0, "configur": [0, 2], "requir": [0, 2], "onli": [0, 1, 2], "tunnel": 0, "cdn": 0, "auto": 0, "thumbnail": [0, 2], "boolean": [0, 2], "flag": [0, 2], "gener": [0, 1, 2], "imag": 0, "preview": [0, 2], "true": [0, 2], "docstr": 0, "googl": 0, "style": 0, "convent": 0, "pep": 0, "8": 0, "isort": 0, "gitvers": 0, "revers": 0, "f": 0, "release_not": 0, "rst": 0, "t": [0, 2], "pre": 0, "commit": 0, "ensur": 0, "pytest": 0, "valid": [0, 2], "hyperlink": 0, "all": [0, 1, 2], "markdown": 0, "includ": [0, 1, 2], "wiki": 0, "page": [0, 1, 2], "sphinx": 0, "5": 0, "recommonmark": 0, "http": [0, 2], "org": 0, "project": 0, "thevickypedia": 0, "github": 0, "io": 0, "vignesh": 0, "rao": 0, "under": 0, "mit": 0, "pystream": [1, 2], "two": 1, "wai": [1, 2], "gain": 1, "access": [1, 2], "session_token": [1, 2], "directori": [1, 2], "content": [1, 2], "signatur": 1, "ui": [1, 2], "creat": [1, 2], "hex": [1, 2], "nativ": 1, "j": [1, 2], "These": 1, "ar": [1, 2], "calcul": [1, 2], "hash": [1, 2], "i": [1, 2], "base64": [1, 2], "encod": [1, 2], "befor": [1, 2], "send": [1, 2], "api": [1, 2], "an": [1, 2], "header": [1, 2], "decod": [1, 2], "ascii": 1, "string": [1, 2], "receiv": [1, 2], "Then": 1, "broken": [1, 2], "down": 1, "timestamp": [1, 2], "The": [1, 2], "get": [1, 2], "store": [1, 2], "env": [1, 2], "variabl": [1, 2], "which": [1, 2], "compar": 1, "purpos": 1, "symmetr": [1, 2], "encrypt": [1, 2], "onc": 1, "login": [1, 2], "ha": [1, 2], "been": 1, "success": [1, 2], "randomli": 1, "64": [1, 2], "bit": [1, 2], "url": [1, 2], "safe": [1, 2], "thi": [1, 2], "uniqu": 1, "each": [1, 2], "user": [1, 2], "form": [1, 2], "payload": [1, 2], "cryptographi": [1, 2], "": [1, 2], "fernet": [1, 2], "retriev": [1, 2], "cooki": [1, 2], "jsonrespons": [1, 2], "redirect_url": 1, "sinc": [1, 2], "ajax": 1, "post": 1, "call": 1, "redirectrespons": [1, 2], "work": [1, 2], "simpli": 1, "redirect": [1, 2], "instead": [1, 2], "json": [1, 2], "respons": [1, 2], "fetch": 1, "alter": 1, "locat": [1, 2], "href": 1, "transfer": 1, "new": [1, 2], "so": [1, 2], "lost": 1, "point": 1, "navig": 1, "carri": 1, "onward": 1, "instal": 2, "sampl": 2, "usag": 2, "code": 2, "standard": 2, "releas": 2, "note": 2, "lint": 2, "pypi": 2, "packag": 2, "runbook": 2, "licens": 2, "copyright": 2, "token": 2, "refer": 2, "async": 2, "redirect_exception_handl": 2, "request": 2, "except": 2, "redirectexcept": 2, "handler": 2, "handl": 2, "paramet": 2, "take": 2, "object": 2, "argument": 2, "inherit": 2, "return": 2, "statu": 2, "type": 2, "startup_task": 2, "none": 2, "task": 2, "need": 2, "dure": 2, "startup": 2, "shutdown_task": 2, "shutdown": 2, "starter": 2, "function": 2, "keyword": 2, "failed_auth_count": 2, "keep": 2, "track": 2, "fail": 2, "attempt": 2, "3": 2, "more": 2, "time": 2, "extract_credenti": 2, "str": 2, "extract": 2, "credenti": 2, "raise_error": 2, "noreturn": 2, "rais": 2, "401": 2, "unauthor": 2, "error": 2, "case": 2, "bad": 2, "verify_login": 2, "union": 2, "int": 2, "verifi": 2, "verify_token": 2, "decrypt": 2, "expir": 2, "as_dict": 2, "tupl": 2, "secretstr": 2, "pass": 2, "object_pairs_hook": 2, "duplic": 2, "order": 2, "secret": 2, "class": 2, "envconfig": 2, "_case_sensit": 2, "bool": 2, "_env_prefix": 2, "_env_fil": 2, "dotenvtyp": 2, "posixpath": 2, "_env_file_encod": 2, "_env_nested_delimit": 2, "_secrets_dir": 2, "ipv4address": 2, "video_port": 2, "session_dur": 2, "3600": 2, "file_format": 2, "auto_thumbnail": 2, "pydant": 2, "share": 2, "across": 2, "pars": 2, "input": 2, "data": 2, "validationerror": 2, "pydantic_cor": 2, "cannot": 2, "__init__": 2, "__pydantic_self__": 2, "common": 2, "self": 2, "first": 2, "arg": 2, "allow": 2, "field": 2, "name": 2, "env_prefix": 2, "extra": 2, "hide_input_in_error": 2, "classmethod": 2, "parse_author": 2, "parse_video_host": 2, "notion": 2, "parse_websit": 2, "evalu": 2, "fileio": 2, "index": 2, "html": 2, "land": 2, "static": 2, "query_param": 2, "home_endpoint": 2, "home": 2, "login_endpoint": 2, "logout_endpoint": 2, "logout": 2, "streaming_endpoint": 2, "chunk_siz": 2, "1048576": 2, "delet": 2, "pathlib": 2, "cipher_suit": 2, "arbitrary_types_allow": 2, "info": 2, "invalid": 2, "map": 2, "inform": 2, "webtoken": 2, "ecrypt": 2, "detail": 2, "within": 2, "httpexcept": 2, "doesn": 2, "demand": 2, "where": 2, "solut": 2, "There": 2, "altern": 2, "our": 2, "javascript": 2, "come": 2, "handi": 2, "mani": 2, "unexpect": 2, "scenario": 2, "tiangolo": 2, "com": 2, "tutori": 2, "instanti": 2, "reason": 2, "alia": 2, "filepath": 2, "initi": 2, "captur": 2, "frame": 2, "particular": 2, "opencv": 2, "videocaptur": 2, "generate_thumbnail": 2, "interv": 2, "output_dir": 2, "second": 2, "output": 2, "failur": 2, "get_video_length": 2, "timedelta": 2, "length": 2, "datetim": 2, "generate_preview": 2, "at_second": 2, "should": 2, "calculate_hash": 2, "given": 2, "base64_encod": 2, "base64_decod": 2, "hex_decod": 2, "convert": 2, "hex_encod": 2, "log_connect": 2, "log": 2, "connect": 2, "devic": 2, "avoid": 2, "multipl": 2, "when": 2, "same": 2, "differ": 2, "natural_sort_kei": 2, "sort": 2, "natur": 2, "element": 2, "deriv": 2, "split": 2, "part": 2, "regular": 2, "express": 2, "get_dir_stream_cont": 2, "parent": 2, "subdir": 2, "insid": 2, "displai": 2, "subdirectori": 2, "exist": 2, "get_all_stream_cont": 2, "folder": 2, "contain": 2, "section": 2, "get_it": 2, "purepath": 2, "current": 2, "serv": 2, "previou": 2, "next": 2, "render": 2, "remove_thumbnail": 2, "img_path": 2, "trigger": 2, "timer": 2, "remov": 2, "keygen": 2, "forc": 2, "restart": 2, "send_bytes_range_request": 2, "file_obj": 2, "binaryio": 2, "start_rang": 2, "end_rang": 2, "asynciter": 2, "bytestr": 2, "chunk": 2, "rang": 2, "specif": 2, "rfc7233": 2, "byte": 2, "end": 2, "yield": 2, "iter": 2, "get_range_head": 2, "range_head": 2, "file_s": 2, "proce": 2, "size": 2, "range_requests_respons": 2, "file_path": 2, "streamingrespons": 2, "srt_to_vtt": 2, "srt": 2, "vtt": 2, "compat": 2, "vtt_to_srt": 2, "auth": 2, "get_expiri": 2, "lease_start": 2, "lease_dur": 2, "expiri": 2, "max": 2, "ag": 2, "wa": 2, "made": 2, "until": 2, "date": 2, "gmt": 2, "home_pag": 2, "templaterespons": 2, "after": 2, "htmlrespons": 2, "termin": 2, "back": 2, "upon": 2, "refresh": 2, "base": 2, "get_favicon": 2, "filerespons": 2, "favicon": 2, "ico": 2, "endpoint": 2, "robinhood": 2, "script": 2, "root": 2, "relat": 2, "preview_load": 2, "setup": 2, "track_load": 2, "track_path": 2, "stream_video": 2, "video_path": 2, "templat": 2, "video_endpoint": 2, "rootfilt": 2, "filter": 2, "while": 2, "preserv": 2, "other": 2, "200": 2, "ok": 2, "307": 2, "temporari": 2, "vid_nam": 2, "redund": 2, "overrid": 2, "implement": 2, "subclass": 2, "method": 2, "record": 2, "examin": 2, "fals": 2, "discard": 2, "togeth": 2, "children": 2, "have": 2, "event": 2, "through": 2, "If": 2, "specifi": 2, "everi": 2, "logrecord": 2, "out": 2, "repres": 2, "someth": 2, "simpl": 2, "check": 2, "network": 2, "id": 2, "privat": 2, "machin": 2, "get_public_ip": 2, "public": 2, "make": 2, "extern": 2, "search": 2}, "objects": {"pystream": [[2, 0, 0, "-", "logger"], [2, 0, 0, "-", "main"], [2, 0, 0, "-", "utils"]], "pystream.logger": [[2, 1, 1, "", "RootFilter"]], "pystream.logger.RootFilter": [[2, 2, 1, "", "filter"]], "pystream.main": [[2, 3, 1, "", "redirect_exception_handler"], [2, 3, 1, "", "shutdown_tasks"], [2, 3, 1, "", "start"], [2, 3, 1, "", "startup_tasks"]], "pystream.models": [[2, 0, 0, "-", "authenticator"], [2, 0, 0, "-", "config"], [2, 0, 0, "-", "images"], [2, 0, 0, "-", "secure"], [2, 0, 0, "-", "squire"], [2, 0, 0, "-", "stream"], [2, 0, 0, "-", "subtitles"]], "pystream.models.authenticator": [[2, 3, 1, "", "extract_credentials"], [2, 3, 1, "", "failed_auth_counter"], [2, 3, 1, "", "raise_error"], [2, 3, 1, "", "verify_login"], [2, 3, 1, "", "verify_token"]], "pystream.models.config": [[2, 1, 1, "", "EnvConfig"], [2, 1, 1, "", "FileIO"], [2, 5, 1, "", "RedirectException"], [2, 1, 1, "", "Session"], [2, 1, 1, "", "Static"], [2, 1, 1, "", "WebToken"], [2, 3, 1, "", "as_dict"], [2, 4, 1, "", "env"]], "pystream.models.config.EnvConfig": [[2, 1, 1, "", "Config"], [2, 4, 1, "", "authorization"], [2, 4, 1, "", "auto_thumbnail"], [2, 4, 1, "", "file_formats"], [2, 2, 1, "", "parse_authorization"], [2, 2, 1, "", "parse_video_host"], [2, 2, 1, "", "parse_website"], [2, 4, 1, "", "session_duration"], [2, 4, 1, "", "video_host"], [2, 4, 1, "", "video_port"], [2, 4, 1, "", "video_source"], [2, 4, 1, "", "website"], [2, 4, 1, "", "workers"]], "pystream.models.config.EnvConfig.Config": [[2, 4, 1, "", "env_file"], [2, 4, 1, "", "env_prefix"], [2, 4, 1, "", "extra"], [2, 4, 1, "", "hide_input_in_errors"]], "pystream.models.config.FileIO": [[2, 4, 1, "", "index"], [2, 4, 1, "", "landing"], [2, 4, 1, "", "listing"]], "pystream.models.config.Session": [[2, 4, 1, "", "info"], [2, 4, 1, "", "invalid"], [2, 4, 1, "", "mapping"]], "pystream.models.config.Static": [[2, 1, 1, "", "Config"], [2, 4, 1, "", "chunk_size"], [2, 4, 1, "", "cipher_suite"], [2, 4, 1, "", "deletions"], [2, 4, 1, "", "home_endpoint"], [2, 4, 1, "", "login_endpoint"], [2, 4, 1, "", "logout_endpoint"], [2, 4, 1, "", "preview"], [2, 4, 1, "", "query_param"], [2, 4, 1, "", "stream"], [2, 4, 1, "", "streaming_endpoint"], [2, 4, 1, "", "track"]], "pystream.models.config.Static.Config": [[2, 4, 1, "", "arbitrary_types_allowed"]], "pystream.models.config.WebToken": [[2, 4, 1, "", "timestamp"], [2, 4, 1, "", "token"], [2, 4, 1, "", "username"]], "pystream.models.images": [[2, 1, 1, "", "Images"]], "pystream.models.images.Images": [[2, 2, 1, "", "generate_preview"], [2, 2, 1, "", "generate_thumbnails"], [2, 2, 1, "", "get_video_length"]], "pystream.models.secure": [[2, 3, 1, "", "base64_decode"], [2, 3, 1, "", "base64_encode"], [2, 3, 1, "", "calculate_hash"], [2, 3, 1, "", "hex_decode"], [2, 3, 1, "", "hex_encode"]], "pystream.models.squire": [[2, 3, 1, "", "get_all_stream_content"], [2, 3, 1, "", "get_dir_stream_content"], [2, 3, 1, "", "get_iter"], [2, 3, 1, "", "keygen"], [2, 3, 1, "", "log_connection"], [2, 3, 1, "", "natural_sort_key"], [2, 3, 1, "", "remove_thumbnail"]], "pystream.models.stream": [[2, 3, 1, "", "get_range_header"], [2, 3, 1, "", "range_requests_response"], [2, 3, 1, "", "send_bytes_range_requests"]], "pystream.models.subtitles": [[2, 3, 1, "", "srt_to_vtt"], [2, 3, 1, "", "vtt_to_srt"]], "pystream.routers": [[2, 0, 0, "-", "auth"], [2, 0, 0, "-", "basics"], [2, 0, 0, "-", "video"]], "pystream.routers.auth": [[2, 3, 1, "", "get_expiry"], [2, 3, 1, "", "home_page"], [2, 3, 1, "", "login"], [2, 3, 1, "", "logout"]], "pystream.routers.basics": [[2, 3, 1, "", "error"], [2, 3, 1, "", "get_favicon"], [2, 3, 1, "", "root"]], "pystream.routers.video": [[2, 3, 1, "", "preview_loader"], [2, 3, 1, "", "stream_video"], [2, 3, 1, "", "track_loader"], [2, 3, 1, "", "video_endpoint"]], "pystream.utils": [[2, 3, 1, "", "get_local_ip"], [2, 3, 1, "", "get_public_ip"]]}, "objtypes": {"0": "py:module", "1": "py:class", "2": "py:method", "3": "py:function", "4": "py:attribute", "5": "py:exception"}, "objnames": {"0": ["py", "module", "Python module"], "1": ["py", "class", "Python class"], "2": ["py", "method", "Python method"], "3": ["py", "function", "Python function"], "4": ["py", "attribute", "Python attribute"], "5": ["py", "exception", "Python exception"]}, "titleterms": {"pystream": 0, "instal": 0, "sampl": 0, "usag": 0, "env": 0, "variabl": 0, "code": 0, "standard": 0, "releas": 0, "note": 0, "lint": 0, "pypi": 0, "packag": 0, "runbook": 0, "licens": 0, "copyright": 0, "authent": [1, 2], "usernam": 1, "password": 1, "frontend": 1, "backend": 1, "session": 1, "token": 1, "refer": 1, "stream": 2, "localhost": 2, "A": 2, "secur": 2, "interfac": 2, "video": 2, "read": 2, "me": 2, "main": 2, "modul": 2, "model": 2, "config": 2, "imag": 2, "squir": 2, "subtitl": 2, "router": 2, "basic": 2, "support": 2, "logger": 2, "util": 2, "indic": 2, "tabl": 2}, "envversion": {"sphinx.domains.c": 2, "sphinx.domains.changeset": 1, "sphinx.domains.citation": 1, "sphinx.domains.cpp": 6, "sphinx.domains.index": 1, "sphinx.domains.javascript": 2, "sphinx.domains.math": 2, "sphinx.domains.python": 3, "sphinx.domains.rst": 2, "sphinx.domains.std": 2, "sphinx": 56}})
\ No newline at end of file
diff --git a/pre_commit.sh b/pre_commit.sh
index e5a94d0..5514160 100755
--- a/pre_commit.sh
+++ b/pre_commit.sh
@@ -24,9 +24,9 @@ update_release_notes() {
 gen_docs() {
   # Generate sphinx docs
   mkdir -p doc_gen/_static  # Create a _static directory if unavailable
-  cp README.md doc_gen  # Copy readme file to doc_gen
+  cp README.md authentication.md doc_gen  # Copy readme file to doc_gen
   cd doc_gen && make clean html  # cd into doc_gen and create the runbook
-  mv _build/html/* ../docs && mv README.md ../docs  # Move the runbook, readme
+  mv _build/html/* ../docs && mv README.md authentication.md ../docs  # Move the runbook, readme
   cp static.css ../docs/_static
 }
 
diff --git a/pystream/__init__.py b/pystream/__init__.py
index 4f1014b..75b1ab1 100644
--- a/pystream/__init__.py
+++ b/pystream/__init__.py
@@ -1,5 +1,5 @@
 from . import utils  # noqa: F401
 from .main import start  # noqa: F401
-from .models import config, images  # noqa: F401
+from .models import config, images, secure  # noqa: F401
 
 version = "1.1"
diff --git a/pystream/logger.py b/pystream/logger.py
index ce9ea33..b8921e8 100644
--- a/pystream/logger.py
+++ b/pystream/logger.py
@@ -15,7 +15,8 @@ class RootFilter(logging.Filter):
         - The method ``filter(record)``, that examines the log record and returns True to log it or False to discard it.
     """
 
-    def filter(self, record: logging.LogRecord) -> bool:
+    def filter(self,
+               record: logging.LogRecord) -> bool:
         """Filter out logging at ``/`` from log streams.
 
         Args:
diff --git a/pystream/main.py b/pystream/main.py
index bea4a4e..fbed136 100644
--- a/pystream/main.py
+++ b/pystream/main.py
@@ -17,7 +17,8 @@
 
 # Exception handler for RedirectException
 @app.exception_handler(config.RedirectException)
-async def redirect_exception_handler(request: Request, exception: config.RedirectException) -> JSONResponse:
+async def redirect_exception_handler(request: Request,
+                                     exception: config.RedirectException) -> JSONResponse:
     """Custom exception handler to handle redirect.
 
     Args:
@@ -41,11 +42,13 @@ async def redirect_exception_handler(request: Request, exception: config.Redirec
 
 async def startup_tasks() -> None:
     """Tasks that need to run during the API startup."""
-    logger.info('Setting CORS policy.')
+    logger.info("Users allowed [%d]: %s", len(config.env.authorization), list(config.env.authorization.keys()))
+    logger.info('Setting up CORS policy.')
     origins = ["http://localhost.com", "https://localhost.com"]
     origins.extend(config.env.website)
     origins.extend(map((lambda x: x + '/*'), config.env.website))
-    app.add_middleware(CORSMiddleware, allow_origins=origins, allow_methods=["GET", "POST"])
+    # noinspection PyTypeChecker
+    app.add_middleware(CORSMiddleware, allow_origins=origins, allow_methods=["GET", "POST"], allow_credentials=True)
 
 
 async def shutdown_tasks() -> None:
diff --git a/pystream/models/authenticator.py b/pystream/models/authenticator.py
index b2e997b..2056c02 100644
--- a/pystream/models/authenticator.py
+++ b/pystream/models/authenticator.py
@@ -1,14 +1,13 @@
-import base64
 import secrets
 import time
+from typing import Dict, List, NoReturn, Union
 
-import jwt
+from cryptography.fernet import InvalidSignature, InvalidToken
 from fastapi import HTTPException, Request, status
-from fastapi.responses import JSONResponse
 from pydantic import ValidationError
 
 from pystream.logger import logger
-from pystream.models import config
+from pystream.models import config, secure, squire
 
 
 async def failed_auth_counter(request: Request) -> None:
@@ -21,38 +20,26 @@ async def failed_auth_counter(request: Request) -> None:
         config.session.invalid[request.client.host] += 1
     except KeyError:
         config.session.invalid[request.client.host] = 1
-    logger.info(config.session.invalid[request.client.host])
     if config.session.invalid[request.client.host] >= 3:
         raise config.RedirectException(location="/error")
 
 
-async def verify_login(request: Request) -> JSONResponse:
-    """Verifies authentication.
+async def extract_credentials(request: Request) -> List[str]:
+    """Extract the credentials from ``Authorization`` headers and decode it before returning as a list of strings."""
+    auth_header = request.headers.get("authorization", "")
+    # decode the Base64-encoded ASCII string
+    if not auth_header:
+        await raise_error(request)
+    decoded_auth = await secure.base64_decode(auth_header)
+    # convert hex to a string
+    auth = await secure.hex_decode(decoded_auth)
+    return auth.split(',')
 
-    Returns:
-        JSONResponse:
-        Returns JSON response with content and status code.
-    """
-    decoded_auth = base64.b64decode(request.headers.get("authorization", "")).decode("utf-8")
-    auth = bytes(decoded_auth, "utf-8").decode(encoding="unicode_escape")
-    username, password = auth.split(':')
-    if not username or not password:
-        await failed_auth_counter(request)
-        raise HTTPException(
-            status_code=status.HTTP_401_UNAUTHORIZED,
-            detail="Username and password is required to proceed.",
-            headers=None
-        )
-
-    username_validation = secrets.compare_digest(username, config.env.username)
-    password_validation = secrets.compare_digest(password, config.env.password.get_secret_value())
 
-    if username_validation and password_validation:
-        config.session.invalid[request.client.host] = 0
-        return JSONResponse(content={"authenticated": True}, status_code=200)
-
-    logger.error("Incorrect username [%s] or password [%s]", username, password)
+async def raise_error(request) -> NoReturn:
+    """Raises a 401 Unauthorized error in case of bad credentials."""
     await failed_auth_counter(request)
+    logger.error("Incorrect username or password: %d", config.session.invalid[request.client.host])
     raise HTTPException(
         status_code=status.HTTP_401_UNAUTHORIZED,
         detail="Incorrect username or password",
@@ -60,23 +47,47 @@ async def verify_login(request: Request) -> JSONResponse:
     )
 
 
+async def verify_login(request: Request) -> Dict[str, Union[str, int]]:
+    """Verifies authentication and generates session token for each user.
+
+    Returns:
+        Dict[str, str]:
+        Returns a dictionary with the payload required to create the session token.
+    """
+    username, signature, timestamp = await extract_credentials(request)
+    if password := config.env.authorization.get(username):
+        hex_user = await secure.hex_encode(username)
+        hex_pass = await secure.hex_encode(password.get_secret_value())
+    else:
+        logger.warning("User '%s' not allowed", username)
+        await raise_error(request)
+    message = f"{hex_user}{hex_pass}{timestamp}"
+    expected_signature = await secure.calculate_hash(message)
+    if secrets.compare_digest(signature, expected_signature):
+        config.session.invalid[request.client.host] = 0
+        key = squire.keygen()
+        # Store session token for each apikey
+        config.session.mapping[username] = key
+        return {"username": username, "token": key, "timestamp": int(timestamp)}
+    await raise_error(request)
+
+
 async def verify_token(token: str) -> None:
-    """Decodes the JWT and validates the session token and expiration.
+    """Decrypts the symmetric encrypted token and validates the session token and expiration.
 
     Args:
-        token: JSON web token.
-
-    Raises:
-        RedirectException:
+        token: Symmetric encrypted key.
     """
     if not token:
+        logger.warning("Session token was missing/revoked")
         raise config.RedirectException(location="/error", detail="Invalid session token")
     try:
-        decoded = config.WebToken(**jwt.decode(jwt=token, key=config.env.secret.get_secret_value(), algorithms="HS256"))
-    except (jwt.InvalidSignatureError, ValidationError) as error:
-        logger.error(error)
+        decoded = config.WebToken(**eval(config.static.cipher_suite.decrypt(token).decode()))
+    except (InvalidToken, InvalidSignature, ValidationError) as error:
+        logger.error(type(error))
         raise config.RedirectException(location="/error", detail="Invalid session token")
-    if not secrets.compare_digest(decoded.token, config.static.session_token):
+    if not secrets.compare_digest(decoded.token, config.session.mapping.get(decoded.username, '')):
         raise config.RedirectException(location="/error", detail="Invalid session token")
+    # Max time and expiry for session token is set in the Cookie, but this is a fallback mechanism to avoid tampering
     if time.time() - decoded.timestamp > config.env.session_duration:
         raise config.RedirectException(location="/error", detail="Session expired")
diff --git a/pystream/models/config.py b/pystream/models/config.py
index f2add62..e610d38 100644
--- a/pystream/models/config.py
+++ b/pystream/models/config.py
@@ -1,11 +1,11 @@
+import json
 import os
 import pathlib
-import random
 import socket
-import string
 from ipaddress import IPv4Address
-from typing import List, Optional, Sequence, Set, Union
+from typing import Any, Dict, List, Optional, Sequence, Set, Tuple, Union
 
+from cryptography.fernet import Fernet
 from pydantic import (BaseModel, DirectoryPath, Field, PositiveInt, SecretStr,
                       field_validator)
 from pydantic_settings import BaseSettings
@@ -13,6 +13,25 @@
 template_storage = os.path.join(pathlib.Path(__file__).parent.parent, "templates")
 
 
+def as_dict(pairs: List[Tuple[str, str]]) -> Dict[str, SecretStr]:
+    """Custom decoder for ``json.loads`` passed via ``object_pairs_hook`` raising error on duplicate keys.
+
+    Args:
+        pairs: Takes the ordered list of pairs as an argument.
+
+    Returns:
+        Dict[str, SecretStr]:
+        A dictionary of key as string and value as a secret.
+    """
+    dictionary = {}
+    for key, value in pairs:
+        if key in dictionary:
+            raise ValueError(f"Duplicate key: {key!r}")
+        else:
+            dictionary[key.strip()] = SecretStr(value.strip())
+    return dictionary
+
+
 class EnvConfig(BaseSettings):
     """Configure all env vars and validate using ``pydantic`` to share across modules.
 
@@ -20,9 +39,7 @@ class EnvConfig(BaseSettings):
 
     """
 
-    username: str
-    password: SecretStr
-    secret: SecretStr
+    authorization: Any
     video_source: DirectoryPath
 
     video_host: IPv4Address = socket.gethostbyname("localhost")
@@ -42,6 +59,22 @@ class Config:
         extra = "ignore"  # Ignores additional environment variables present in env files
         hide_input_in_errors = True  # Avoids revealing sensitive information in validation error messages
 
+    # noinspection PyMethodParameters
+    @field_validator("authorization", mode='before', check_fields=False)
+    def parse_authorization(cls, value: Any) -> Dict[str, SecretStr]:
+        """Validates the authorization parameter."""
+        val = json.loads(value, object_pairs_hook=as_dict)
+        if isinstance(val, dict):
+            r = {}
+            for k, v in val.items():
+                if len(k) < 3:
+                    raise ValueError(f"[{k}: {v}] username should be at least 4 or more characters")
+                if len(v) < 8:
+                    raise ValueError(f"[{k}: {v}] password should be at least 8 or more characters")
+                r[k] = v
+            return r
+        raise ValueError("input should be a valid dictionary with username as key and password as value")
+
     # noinspection PyMethodParameters
     @field_validator("video_host", mode='after', check_fields=True)
     def parse_video_host(cls, value: IPv4Address) -> str:
@@ -91,10 +124,12 @@ class Static(BaseModel):
     streaming_endpoint: str = "/video"
     chunk_size: PositiveInt = 1024 * 1024
     deletions: Set[pathlib.PosixPath] = set()
-    # todo: Allow multiple users, and create multiple session tokens during startup
-    # Use a single session token, since currently this project only allows one username and password
-    # Random string ensures, that users are forced to login when the server restarts
-    session_token: str = "".join(random.choices(string.ascii_letters + string.digits, k=32))
+    cipher_suite: Fernet = Fernet(Fernet.generate_key())
+
+    class Config:
+        """Static configuration."""
+
+        arbitrary_types_allowed = True
 
 
 class Session(BaseModel):
@@ -106,17 +141,20 @@ class Session(BaseModel):
 
     info: dict = {}
     invalid: dict = {}
+    mapping: dict = {}
 
 
 class WebToken(BaseModel):
-    """Object to store and validate JWT objects.
+    """Object to store and validate the symmetric ecrypted payload.
 
     >>> WebToken
 
     """
 
-    token: str
-    timestamp: int
+    # Use a minimum length so empty tokens cannot get passed when assigning default value for a dict value
+    token: str = Field(..., min_length=1)
+    username: str = Field(..., min_length=1)
+    timestamp: int = Field(..., gt=0)
 
 
 class RedirectException(Exception):
@@ -133,7 +171,9 @@ class RedirectException(Exception):
         https://fastapi.tiangolo.com/tutorial/handling-errors/#install-custom-exception-handlers
     """
 
-    def __init__(self, location: str, detail: Optional[str] = ""):
+    def __init__(self,
+                 location: str,
+                 detail: Optional[str] = ""):
         """Instantiates the ``RedirectException`` object with the required parameters.
 
         Args:
diff --git a/pystream/models/images.py b/pystream/models/images.py
index 354cd01..db9e922 100644
--- a/pystream/models/images.py
+++ b/pystream/models/images.py
@@ -15,7 +15,8 @@ class Images:
 
     """
 
-    def __init__(self, filepath: pathlib.PosixPath):
+    def __init__(self,
+                 filepath: pathlib.PosixPath):
         """Instantiates the object using opencv's VideoCapture object.
 
         Args:
@@ -24,7 +25,9 @@ def __init__(self, filepath: pathlib.PosixPath):
         self.filepath = filepath
         self.video_capture = cv2.VideoCapture(str(self.filepath))
 
-    def generate_thumbnails(self, interval: int = 1, output_dir: pathlib.PosixPath = None) -> bool:
+    def generate_thumbnails(self,
+                            interval: int = 1,
+                            output_dir: pathlib.PosixPath = None) -> bool:
         """Generate thumbnails for a video file.
 
         Args:
@@ -72,7 +75,9 @@ def get_video_length(self) -> Tuple[int, datetime.timedelta]:
         video_time = datetime.timedelta(seconds=seconds)
         return seconds, video_time
 
-    def generate_preview(self, path: str, at_second: int = None) -> bool:
+    def generate_preview(self,
+                         path: str,
+                         at_second: int = None) -> bool:
         """Generate preview image for a video.
 
         Args:
diff --git a/pystream/models/secure.py b/pystream/models/secure.py
new file mode 100644
index 0000000..afc1d66
--- /dev/null
+++ b/pystream/models/secure.py
@@ -0,0 +1,41 @@
+import base64
+import binascii
+import hashlib
+import string
+from typing import Any
+
+UNICODE_PREFIX = (
+        base64.b64decode(b"XA==").decode(encoding="ascii")
+        + string.ascii_letters[20]
+        + string.digits[:1] * 2
+)
+
+
+async def calculate_hash(value: Any) -> str:
+    """Generate hash value for the given payload."""
+    return hashlib.sha512(bytes(value, "utf-8")).hexdigest()
+
+
+async def base64_encode(value: Any) -> str:
+    """Base64 encode the given payload."""
+    encoded_bytes = base64.b64encode(value.encode("utf-8"))
+    return encoded_bytes.decode("utf-8")
+
+
+async def base64_decode(value: Any) -> str:
+    """Base64 decode the given payload."""
+    return base64.b64decode(value).decode("utf-8")
+
+
+async def hex_decode(value: Any) -> str:
+    """Convert hex value to a string."""
+    return bytes(value, "utf-8").decode(encoding="unicode_escape")
+
+
+async def hex_encode(value: str):
+    """Convert string value to hex."""
+    return UNICODE_PREFIX + UNICODE_PREFIX.join(
+        binascii.hexlify(data=value.encode(encoding="utf-8"), sep="-")
+        .decode(encoding="utf-8")
+        .split(sep="-")
+    )
diff --git a/pystream/models/squire.py b/pystream/models/squire.py
index cd0177c..b817dfb 100644
--- a/pystream/models/squire.py
+++ b/pystream/models/squire.py
@@ -1,7 +1,9 @@
 import os
 import pathlib
 import re
+import secrets
 from typing import Dict, List, Tuple, Union
+from urllib import parse as urlparse
 
 from fastapi import Request
 from fastapi.templating import Jinja2Templates
@@ -39,7 +41,8 @@ def natural_sort_key(filename: str) -> List[Union[int, str]]:
     return [int(part) if part.isdigit() else part.lower() for part in parts]
 
 
-def get_dir_stream_content(parent: pathlib.PosixPath, subdir: str) -> List[Dict[str, str]]:
+def get_dir_stream_content(parent: pathlib.PosixPath,
+                           subdir: str) -> List[Dict[str, str]]:
     """Get the video files inside a particular directory.
 
     Args:
@@ -81,9 +84,8 @@ def get_all_stream_content() -> Dict[str, List[Dict[str, str]]]:
                     structure['directories'].append(entry)
                 else:
                     structure['files'].append({"name": file_, "path": os.path.join(config.static.stream, file_)})
-    structure['files'] = sorted(structure['files'], key=lambda x: natural_sort_key(x['name']))
-    structure['directories'] = sorted(structure['directories'], key=lambda x: natural_sort_key(x['name']))
-    return structure
+    return dict(files=sorted(structure['files'], key=lambda x: natural_sort_key(x['name'])),
+                directories=sorted(structure['directories'], key=lambda x: natural_sort_key(x['name'])))
 
 
 def get_iter(filename: pathlib.PurePath) -> Union[Tuple[str, str], Tuple[None, None]]:
@@ -96,19 +98,17 @@ def get_iter(filename: pathlib.PurePath) -> Union[Tuple[str, str], Tuple[None, N
         Tuple[str, str]:
         Tuple of previous file and next file.
     """
-    # Extract only the file formats that are supported
-    dir_content = sorted(
-        (file for file in os.listdir(filename.parent) if pathlib.PosixPath(file).suffix in config.env.file_formats),
-        key=lambda x: natural_sort_key(x)
-    )
+    dir_content = sorted(os.listdir(filename.parent), key=lambda x: natural_sort_key(x))
     idx = dir_content.index(filename.name)
     try:
-        previous_ = dir_content[idx - 1]
-    except IndexError:
+        previous_ = urlparse.quote(dir_content[idx - 1])
+        assert pathlib.PosixPath(previous_).suffix in config.env.file_formats
+    except (IndexError, AssertionError):
         previous_ = None
     try:
-        next_ = dir_content[idx + 1]
-    except IndexError:
+        next_ = urlparse.quote(dir_content[idx + 1])
+        assert pathlib.PosixPath(next_).suffix in config.env.file_formats
+    except (IndexError, AssertionError):
         next_ = None
     return previous_, next_
 
@@ -123,3 +123,13 @@ def remove_thumbnail(img_path: pathlib.PosixPath) -> None:
         os.remove(img_path)
     else:
         logger.warning("%s was removed before hand." % img_path)
+
+
+def keygen() -> str:
+    """Generate session token from secrets module, so that users are forced to log in when the server restarts.
+
+    Returns:
+        str:
+        Returns a URL safe 64-bit token.
+    """
+    return secrets.token_urlsafe(64)
diff --git a/pystream/models/stream.py b/pystream/models/stream.py
index 5afb53f..8ef5864 100644
--- a/pystream/models/stream.py
+++ b/pystream/models/stream.py
@@ -9,7 +9,8 @@
 
 
 def send_bytes_range_requests(file_obj: BinaryIO,
-                              start_range: int, end_range: int) -> AsyncIterable[Union[str, ByteString]]:
+                              start_range: int,
+                              end_range: int) -> AsyncIterable[Union[str, ByteString]]:
     """Send a file in chunks using Range Requests specification RFC7233.
 
     Args:
@@ -55,7 +56,8 @@ def get_range_header(range_header: str,
     return start_range, end_range
 
 
-def range_requests_response(range_header: str, file_path: str) -> StreamingResponse:
+def range_requests_response(range_header: str,
+                            file_path: str) -> StreamingResponse:
     """Returns StreamingResponse using Range Requests of a given file.
 
     Args:
diff --git a/pystream/models/subtitles.py b/pystream/models/subtitles.py
index 95481dc..fe69179 100644
--- a/pystream/models/subtitles.py
+++ b/pystream/models/subtitles.py
@@ -1,5 +1,3 @@
-import asyncio
-import os
 import pathlib
 
 
@@ -47,19 +45,9 @@ async def vtt_to_srt(filename: pathlib.PosixPath):
                 break
         else:
             raise RuntimeError
-        text = '\n'.join(lines[idx+1:])
+        text = '\n'.join(lines[idx + 1:])
         srt_timecode = line if ' --> ' in line else line.replace('-->', ' --> ')
         srt_content += f"{subtitle_counter}\n{srt_timecode}\n{text}\n\n"
         subtitle_counter += 1
     with open(output_file, 'w', encoding='utf-8') as f:
         f.write(srt_content)
-
-
-if __name__ == '__main__':
-    path = os.path.expanduser('~/Desktop/Streaming/got/Season 2')
-    for file in os.listdir(path):
-        if file.endswith('.vtt'):
-            sub_path = pathlib.PosixPath(os.path.join(path, file))
-            asyncio.run(vtt_to_srt(sub_path))
-            if os.path.exists(sub_path.with_suffix('.srt')):
-                os.remove(sub_path)
diff --git a/pystream/requirements.txt b/pystream/requirements.txt
index 76aa8e8..7c15c7a 100644
--- a/pystream/requirements.txt
+++ b/pystream/requirements.txt
@@ -1,11 +1,11 @@
 aiofiles==23.2.1
+cryptography==42.0.1
 fastapi==0.109.0
 itsdangerous==2.1.2
 Jinja2==3.1.3
 opencv-python==4.9.0.80
 pydantic==2.5.3
 pydantic-settings==2.1.0
-pyjwt==2.8.0
 python-multipart==0.0.6
 requests==2.31.0
 uvicorn==0.27.0
diff --git a/pystream/routers/auth.py b/pystream/routers/auth.py
index 787f728..ffade85 100644
--- a/pystream/routers/auth.py
+++ b/pystream/routers/auth.py
@@ -1,7 +1,6 @@
 import os
 import time
 
-import jwt
 from fastapi import APIRouter, Cookie, Request, status
 from fastapi.responses import HTMLResponse, JSONResponse
 from jinja2 import Template
@@ -12,8 +11,24 @@
 router = APIRouter()
 
 
+def get_expiry(lease_start: int, lease_duration: int) -> str:
+    """Get expiry datetime as string using max age.
+
+    Args:
+        lease_start: Time when the authentication was made.
+        lease_duration: Number of seconds until expiry.
+
+    Returns:
+        str:
+        Returns the date and time of expiry in GMT.
+    """
+    end = time.gmtime(lease_start + lease_duration)
+    return time.strftime('%a, %d-%b-%Y %T GMT', end)
+
+
 @router.get("%s" % config.static.home_endpoint, response_model=None)
-async def home_page(request: Request, session_token: str = Cookie(None)) -> squire.templates.TemplateResponse:
+async def home_page(request: Request,
+                    session_token: str = Cookie(None)) -> squire.templates.TemplateResponse:
     """Serves the home/index page for the UI.
 
     Args:
@@ -46,18 +61,23 @@ async def login(request: Request) -> JSONResponse:
         Returns the JSONResponse with content, status code and cookie.
     """
     squire.log_connection(request)
-    await authenticator.verify_login(request)
-    # Since JavaScript cannot handle RedirectResponse from FastAPI
+    auth_payload = await authenticator.verify_login(request)
+    # AJAX calls follow redirect and return the response instead of replacing the URL
     # Solution is to revert to Form, but that won't allow header auth and additional customization done by JavaScript
     response = JSONResponse(content={"redirect_url": config.static.home_endpoint}, status_code=status.HTTP_200_OK)
-    encoded_jwt = jwt.encode(payload={"token": config.static.session_token, "timestamp": int(time.time())},
-                             key=config.env.secret.get_secret_value(), algorithm="HS256")
-    response.set_cookie("session_token", encoded_jwt, httponly=True)
+    expiration = get_expiry(lease_start=auth_payload['timestamp'], lease_duration=config.env.session_duration)
+    logger.info("Session for '%s' will be valid until %s", auth_payload['username'], expiration)
+    response.set_cookie(key="session_token",
+                        value=config.static.cipher_suite.encrypt(str(auth_payload).encode("utf-8")).decode(),
+                        max_age=config.env.session_duration,
+                        expires=expiration,
+                        httponly=True)
     return response
 
 
 @router.get("%s" % config.static.logout_endpoint, response_model=None)
-async def logout(request: Request, session_token: str = Cookie(None)) -> HTMLResponse:
+async def logout(request: Request,
+                 session_token: str = Cookie(None)) -> HTMLResponse:
     """Terminates the user's session by deleting the cookie and redirecting back to login page upon refresh.
 
     Args:
@@ -75,7 +95,7 @@ async def logout(request: Request, session_token: str = Cookie(None)) -> HTMLRes
         if config.session.info.get(request.client.host):
             del config.session.info[request.client.host]
         else:
-            logger.warning("Session information for %s was never stored or no video was played.", request.client.host)
+            logger.warning("Session information for %s was not stored or no video was played.", request.client.host)
         response = HTMLResponse(logout_template.render(
             detail="You have been logged out successfully.", show_login=False
         ))
@@ -83,6 +103,6 @@ async def logout(request: Request, session_token: str = Cookie(None)) -> HTMLRes
     else:
         logger.info("Redirecting connection from %s to login page", request.client.host)
         response = HTMLResponse(logout_template.render(
-            detail="You were never logged in. Please click the button below to proceed.", show_login=True
+            detail="You are not logged in. Please click the button below to proceed.", show_login=True
         ))
     return response
diff --git a/pystream/routers/video.py b/pystream/routers/video.py
index 8c1ef71..fc1662c 100644
--- a/pystream/routers/video.py
+++ b/pystream/routers/video.py
@@ -56,7 +56,9 @@ async def track_loader(request: Request,
     """
     await authenticator.verify_token(session_token)
     squire.log_connection(request)
-    return FileResponse(html.unescape(track_path))
+    if pathlib.Path(track_path).exists():
+        return FileResponse(html.unescape(track_path))
+    raise HTTPException(status_code=status.HTTP_404_NOT_FOUND, detail=f"File at path {track_path!r} does not exist.")
 
 
 @router.get("/%s/{video_path:path}" % config.static.stream, response_model=None)
diff --git a/pystream/templates/index.html b/pystream/templates/index.html
index 3a87e7f..6f51116 100644
--- a/pystream/templates/index.html
+++ b/pystream/templates/index.html
@@ -106,7 +106,7 @@
 </script>
 <!-- handle authentication from login page -->
 <script>
-    function submitToAPI(event) {
+    async function submitToAPI(event) {
         event.preventDefault();
         const username = $("#username").val();
         const password = $("#password").val();
@@ -114,22 +114,33 @@
             alert("ERROR: Username and password are required to authenticate your request!");
             return false;
         }
-        function ConvertStringToHex(str) {
+        async function ConvertStringToHex(str) {
             let arr = [];
             for (let i = 0; i < str.length; i++) {
                 arr[i] = ("00" + str.charCodeAt(i).toString(16)).slice(-4);
             }
             return "\\u" + arr.join("\\u");
         }
-        let hex_user = ConvertStringToHex(username);
-        let hex_pass = ConvertStringToHex(password);
+        async function CalculateHash(username, password, timestamp) {
+            const message = username + password + timestamp;
+            const encoder = new TextEncoder();
+            const data = encoder.encode(message);
+            const hashBuffer = await crypto.subtle.digest('SHA-512', data);
+            const hashArray = Array.from(new Uint8Array(hashBuffer));
+            return hashArray.map(byte => byte.toString(16).padStart(2, '0')).join('');
+        }
+        let hex_user = await ConvertStringToHex(username);
+        let hex_pass = await ConvertStringToHex(password);
+        let timestamp = Math.round(new Date().getTime() / 1000);
+        let hash = await CalculateHash(hex_user, hex_pass, timestamp)
+        let authHeaderValue = hex_user + ',' + hash + ',' + timestamp;
         let origin = window.location.origin
         $.ajax({
             method: "POST",
             url: origin.concat("{{ signin }}"),
             headers: {
                 'accept': 'application/json',
-                'Authorization': btoa(hex_user + ":" + hex_pass)
+                'Authorization': btoa(authHeaderValue)
             },
             crossDomain: "true",
             contentType: "application/json; charset=utf-8",