Source code for django_river_ml.views.auth

from django.http import HttpResponseForbidden
from rest_framework.decorators import authentication_classes, permission_classes
from rest_framework.response import Response
from rest_framework.views import APIView

import django_river_ml.auth as auth



[docs]
@authentication_classes([])
@permission_classes([])
class GetAuthToken(APIView):
    """
    Given a GET request for a token, validate and return it.
    """

    permission_classes = []
    allowed_methods = ("GET",)


[docs]
    def get(self, request, *args, **kwargs):
        """GET /auth/token"""
        print("GET /auth/token")
        user = auth.get_user(request)

        # No token provided matching a user, no go
        if not user:
            return HttpResponseForbidden()

        # Generate the token data, a dict with token, expires_in, and issued_at
        data = auth.generate_jwt(user.username)
        return Response(status=200, data=data)