// the find
hack4impact/flask-base
A simple Flask boilerplate app with SQLAlchemy, Redis, User Authentication, and more.
A Flask starter template from Hack4Impact that wires up user auth, role management, async task queues via Redis RQ, and an admin panel — all the plumbing you'd otherwise spend a week writing for a typical internal tool or nonprofit web app. It's aimed at teams who want to skip boilerplate and get to the actual application logic.
The blueprint structure is done right — account, admin, and main are properly separated with their own forms and views rather than dumped into one monolithic file. Redis RQ integration is included and working out of the box, which is the part most Flask tutorials leave as an exercise. The Docker Compose setup covers the full stack including Adminer, so local onboarding is straightforward. ZXCVBN for client-side password strength is a nice touch that most boilerplates skip.
The project is effectively abandoned — last meaningful activity was years ago, and it's pinned to Flask-Assets with a Ruby Sass dependency, which is a real setup headache in 2024 when Ruby isn't in your stack. There's almost no test coverage: two test files, one of which just checks that the app imports. The CKEditor is vendored directly into static/ as a 4.x build with hundreds of files committed, which is the kind of thing that rots quietly and creates security debt. Flask-Login session management uses the older pattern without `login_manager.needs_refresh_extension_name` guards, so session fixation edge cases aren't handled.