Skip to content
This repository was archived by the owner on May 26, 2020. It is now read-only.
This repository was archived by the owner on May 26, 2020. It is now read-only.

Is there someone tried to ReWite the obtain_token and verify_token ? #456

Open
Open
Is there someone tried to ReWite the obtain_token and verify_token ?#456
@ghost

Description

@ghost
ghost
opened on Sep 21, 2018

I have try it that i want to solve thsi two problems,

  • 1, Only one recent user login is valid at the same time, and then the token with last_logined_user with expire at time.

  • 2, If one user tried login faild so many times in one minute,, his remote_addr will not allow him login again .

then i tred it in this view, but the msg in last line msg can not be use .

# coding:utf-8

from rest_framework import serializers
from rest_framework_jwt.compat import get_username_field, PasswordField, Serializer
from django.contrib.auth import authenticate, get_user_model
from rest_framework_jwt.serializers import _, jwt_payload_handler, jwt_encode_handler


from rest_framework_jwt.utils import jwt_response_payload_handler
class CustomizeJSONWebTokenSerializer(Serializer):
    def __init__(self, *args, **kwargs):
        super(CustomizeJSONWebTokenSerializer, self).__init__(*args, **kwargs)

        self.fields[self.username_field] = serializers.CharField()
        self.fields['password'] = PasswordField(write_only=True)

    @property
    def username_field(self):
        return get_username_field()

    def validate(self, attrs):
        credentials = {
            self.username_field: attrs.get(self.username_field),
            'password': attrs.get('password')
        }

        if all(credentials.values()):
            user = authenticate(**credentials)

            if user:
                if not user.is_active:
                    msg = _('User account is disabled.')
                    raise serializers.ValidationError(msg)

                payload = jwt_payload_handler(user)

                 ## The func that will write here while login seccuss
                return {
                    'token': jwt_encode_handler(payload),
                    'user': user
                }
            else:

                ## The func that will write here while login failed
                msg = _('Unable to login with provided credentials.')
                raise serializers.ValidationError(msg)
        else:
            ## there
            # YOU can rewrite this msg, but no active 
            msg = _('Must include "{username_field}" and "password".')
            msg = msg.format(username_field=self.username_field)
            raise serializers.ValidationError(msg)

from rest_framework_jwt.views import JSONWebTokenAPIView


class CustomizeObtainJSONWebToken(JSONWebTokenAPIView):
    serializer_class = CustomizeJSONWebTokenSerializer

customize_obtain_jwt_token = CustomizeObtainJSONWebToken.as_view()

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions