python - Django REST API Custom Token Authentication does not recognize token in future requests -


i running following issues django application , django-rest-framework.

i have written customauthtoken view according to: django rest framework: obtain auth token using email instead username

account/views.py 

class userview(apiview):          def get(self, request):         users = customer.objects.all()         serializer = customerserializer(users, many=true)         return response(serializer.data)   class obtainauthtoken(apiview):     throttle_classes = ()     permission_classes = ()     parser_classes = (         formparser,         multipartparser,         jsonparser,     )      renderer_classes = (jsonrenderer,)      def post(self, request):         # authenticate user         c_auth = customauthentication()         customer = c_auth.authenticate(request)         token, created = token.objects.get_or_create(user=customer)          content = {             'token': unicode(token.key),         }          return response(content)

my main urls.py:

    rest_framework.urlpatterns import format_suffix_patterns  account import views user_view  urlpatterns = [     url(r'users/$', user_view.userview.as_view()),     url(r'^api-token-auth/', user_view.obtainauthtoken.as_view()),     url(r'^auth/', include('rest_framework.urls',                                namespace='rest_framework')), ]  urlpatterns = format_suffix_patterns(urlpatterns)

my custom authentication.py:

    django.contrib.auth.hashers import check_password  rest_framework import authentication rest_framework import exceptions  usercp.models import customer   class customauthentication(authentication.baseauthentication):     def authenticate(self, request):         email = request.post.get('email')         password = request.post.get('password')         if not email:             return none         if not password:             return none          try:             user = customer.objects.get(email=email)             if check_password(password, user.password):                 if not user.is_active:                     msg = _('user account disabled.')                 customer = user             else:                 msg = _('unable log in provided credentials.')                 customer = none          except customer.doesnotexist:             msg = 'no such user'             raise exceptions.authenticationfailed(msg)          return customer

and taken settings.py:

rest_framework = {     'default_permission_classes': [         'rest_framework.permissions.isauthenticated'     ],     'default_authentication_classes': (         'rest_framework.authentication.tokenauthentication',     ) }

when send curl request:

curl -h "accept: application/json; indent=4" -h "authorization: token bd97803941a1ede303e4fda9713f7120a1af656c" http://127.0.0.1:8000/users

i getting "access denied".

the login works fine, receiving said token back.

however, cannot access userview. not quite sure problem is. need change in settings tokenauthentication? don't think so. since user set correctly in database, though use custom user object inherited abstractuser. documentation (http://www.django-rest-framework.org/api-guide/authentication/#setting-the-authentication-scheme) think correctly use same request header, spacing correct , don't think there encoding issue.

after working out, token not forwarded in wsgi configuration re-read documentation bit more carefully.

http://www.django-rest-framework.org/api-guide/authentication/#apache-mod_wsgi-specific-configuration

clearly states wsgipassauthorization on needs configured wsgi.


Comments

Post a Comment

Popular posts from this blog

1111. appearing after print sequence - php -

morning, i have code takes string of shoe sizes, explodes , puts in table. code works , info displayed correctly on page after table there few 1's after table. i'm confused this. so table looks (in columns of 3 on webpage) available in following sizes: 3 4 5 6 9 10 111 here's codes, purpose of example $x = 3|4|6|10|9 function get_sizes_pipe($x) { $counter = 0; $splits = explode("|",$x); asort($splits); $x = print "<table class='greentable'>"; $x .= print "<thead><tr><th scope='col' colspan='3' abbr='starter'>available in following sizes:</th></tr></thead><tbody><tr>"; foreach ($splits $split) { $entry = print "<td>".$split."</td>"; if($counter == 2){ $entry .= print "</tr><tr>"; $counter =0; } else { $counter++; ...
Read more

java - WARN : org.springframework.web.servlet.PageNotFound - No mapping found for HTTP request with URI [/board/] in DispatcherServlet with name 'appServlet' -

this question has answer here: why spring mvc respond 404 , report “no mapping found http request uri […] in dispatcherservlet”? 3 answers i trying making simple bbs i'm encountering following error, warn : org.springframework.web.servlet.pagenotfound - no mapping found http request uri [/board/] in dispatcherservlet name 'appservlet' i have tried solve error many times, have failed. how can solve error? here web.xml, controllerand , servlet-context. my web.xml <?xml version="1.0" encoding="utf-8"?> <web-app version="2.5" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/xmlschema-instance" xsi:schemalocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"> <filter> <filter-nam...
Read more

Ruby on Rails, ActiveRecord, Postgres, UTF-8 and ASCII-8BIT encodings -

weirdest error, who’s challenge try , me? spent hours yesterday on , it’s magic. can't believe happening , it's driving me crazy. btw, using: rails 4.2.3 ruby 2.2.3 pg 0.18 encoding.default_internal = encoding.default_external = utf-8 config.encoding = 'utf-8' it has postgres, activerecord , encodings! turns out we’ve been getting these errors whenever create new users on database special characters: encoding::undefinedconversionerror: "\xc3" ascii-8bit utf-8 \xc3 may vary depending on characters. weird part we’ve set since beginning utf-8. makes no sense , digged it, , used script: user.all.each |user| user.attributes.each |name, value| if value.is_a? string puts user.email + name.encoding.to_s + value.encoding.to_s end end end and output of 1 of users, users same: dr_lottahelp@blahblah.comutf-8utf-8 dr_lottahelp@blahblah.comutf-8ascii-8bit dr_lottahelp@blahblah.comutf-8ascii-8bit dr_lottahelp@blahblah.comutf-8asci...
Read more