theluyuan/shynet
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add ApiTokenRequiredMixin

Browse Source
This commit is contained in:
Paweł Jastrzębski 2021-10-13 16:01:31 +02:00 committed by R. Miles McCain
parent 1dec03c724
commit a7248cd54b
1 changed files with 24 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
shynet/api/mixins.py Normal file
View File

@ -0,0 +1,24 @@
from django.http import JsonResponse
from django.contrib.auth.models import AnonymousUser
from .models import ApiToken
class ApiTokenRequiredMixin:
def _get_user_by_token(self, request):
token = request.headers.get('Authorization')
if not token or not token.startswith('Token '):
return AnonymousUser()
token = token.split(' ')[1]
api_token = ApiToken.objects.filter(value=token).first()
if not api_token:
return AnonymousUser()
return api_token.user
def dispatch(self, request, *args, **kwargs):
request.user = self._get_user_by_token(request)
if not request.user.is_authenticated:
return JsonResponse(data={}, status=403)
return super().dispatch(request, *args, **kwargs)