DRF temporary token authentication
Kapustlo cb1e42028c Added helper scripts | 2 år sedan | |
---|---|---|
drf_temptoken | 2 år sedan | |
scripts | 2 år sedan | |
tests | 2 år sedan | |
.gitignore | 2 år sedan | |
LICENSE | 2 år sedan | |
README.md | 2 år sedan | |
requirements.txt | 2 år sedan | |
setup.py | 2 år sedan |
DRF temporary authentication token
pip install drf-temptoken
Include drf_temptoken in INSTALLED_APPS
INSTALLED_APPS = [
...,
'drf_temptoken'
]
Add drf_temptoken.auth.TempTokenAuthentication into your authentication classes
REST_FRAMEWORK = {
'DEFAULT_AUTHENTICATION_CLASSES': (
'drf_temptoken.auth.TempTokenAuthentication',
)
}
Create token for user
from django.contrib.auth import get_user_model
from drf_temptoken.utils import create_token, get_user_tokens
User = get_user_model()
user = User.objects.first()
token = create_token(user)
# Sets token's expiration date to current
token = token.expire()
key = token.key # Used in authentication process
tokens = get_user_tokens(user) # Returns a queryset of TempTokens belonging to the user
Default settings (can be overriden in Django's settings)
TMP_TOKEN_HEADER_PREFIX = 'TMP'
TMP_TOKEN_AUTH_HEADER = 'Authorization'
# Set any value in order to get the token from query
TMP_TOKEN_QUERY_PARAM = None
# Python's timedelta kwargs passed in order to set token's expiration date
TMP_TOKEN_TIME_DELTA_KWARGS = {
'days': 7 # Token will be expired in 7 days by default
}
Auth backend will check for HTTP_AUTHORIZATION: TMP {token} by default
Assuming your token (token.key) is equal to "123", your request should look like this:
import requests
headers = {
'Authorization': 'TMP 123'
}
response = requests.get(url, headers=headers)
Or like this if you set query param to _api_key:
import requests
url = 'https://example.com?_api_key=123'
response = requests.get(url)