feat: add authentication using json web token

Juan Benitez · Juan Benitez · commit 17eff4cb232d · 2021-03-19T19:19:44.000-05:00
diff --git a/.gitignore b/.gitignore
@@ -106,3 +106,6 @@ venv.bak/
 
 # mypy
 .mypy_cache/
+
+# Database
+db.sqlite3
diff --git a/api_crud/settings.py b/api_crud/settings.py
@@ -29,7 +29,7 @@
 
 REST_FRAMEWORK = {
     'DEFAULT_AUTHENTICATION_CLASSES': (
-        'rest_framework.authentication.TokenAuthentication',
+        'rest_framework_simplejwt.authentication.JWTAuthentication',
     )
 }
 
@@ -44,13 +44,8 @@
     'django.contrib.messages',
     'django.contrib.staticfiles',
     'rest_framework',
+    'authentication',
     'movies',
-    'rest_framework.authtoken',
-    'rest_auth',
-    'django.contrib.sites',
-    'allauth',
-    'allauth.account',
-    'rest_auth.registration',
 ]
 
 SITE_ID = 1
diff --git a/api_crud/urls.py b/api_crud/urls.py
@@ -1,14 +1,10 @@
 
 from django.contrib import admin
-from django.conf.urls import include, url
-from .views import RegisterView, CustomLoginView
-
+from django.urls import include, path
 
 # urls
 urlpatterns = [
-    url(r'^', include('movies.urls')),
-    url(r'^rest-auth/login/', CustomLoginView.as_view()),
-    url(r'^rest-auth/registration/', RegisterView.as_view()),
-    url(r'^rest-auth/', include('rest_auth.urls')),
-    url(r'^admin/', admin.site.urls),
+    path('api/movies/', include('movies.urls')),
+    path('api/auth/', include('authentication.urls')),
+    path('admin/', admin.site.urls),
 ]
diff --git a/api_crud/views.py b/api_crud/views.py
@@ -1,57 +0,0 @@
-from django.utils.decorators import method_decorator
-from django.views.decorators.debug import sensitive_post_parameters
-from rest_framework.response import Response
-from rest_framework.generics import CreateAPIView
-from rest_framework import status
-from allauth.account.utils import complete_signup
-from allauth.account import app_settings as allauth_settings
-from rest_auth.models import TokenModel
-from rest_auth.views import LoginView
-from rest_auth.registration.app_settings import RegisterSerializer, register_permission_classes
-from django.contrib.auth.models import User
-
-sensitive_post_parameters_m = method_decorator(
-    sensitive_post_parameters('password1', 'password2')
-)
-
-
-class RegisterView(CreateAPIView):
-    serializer_class = RegisterSerializer
-    permission_classes = register_permission_classes()
-    token_model = TokenModel
-
-    @sensitive_post_parameters_m
-    def dispatch(self, *args, **kwargs):
-        return super(RegisterView, self).dispatch(*args, **kwargs)
-
-    def create(self, request, *args, **kwargs):
-        serializer = self.get_serializer(data=request.data)
-        serializer.is_valid(raise_exception=True)
-        user = self.perform_create(serializer)
-        headers = self.get_success_headers(serializer.data)
-        content = {
-            "details": "Registered"
-        }
-        return Response(content,
-                        status=status.HTTP_201_CREATED,
-                        headers=headers)
-
-    def perform_create(self, serializer):
-        user = serializer.save(self.request)
-
-        complete_signup(self.request._request, user, None, None)
-        return user
-
-
-class CustomLoginView(LoginView):
-    
-    def get_response(self):
-        orginal_response = super().get_response()
-
-        custom_response = {"user": {
-            "username": self.user.username,
-            "email": self.user.email
-        }}
-        
-        orginal_response.data.update(custom_response)
-        return orginal_response
diff --git a/authentication/__init__.py b/authentication/__init__.py
diff --git a/authentication/admin.py b/authentication/admin.py
@@ -0,0 +1,3 @@
+from django.contrib import admin
+
+# Register your models here.
diff --git a/authentication/apps.py b/authentication/apps.py
@@ -0,0 +1,5 @@
+from django.apps import AppConfig
+
+
+class AuthConfig(AppConfig):
+    name = 'authentication'
diff --git a/authentication/migrations/__init__.py b/authentication/migrations/__init__.py
diff --git a/authentication/models.py b/authentication/models.py
@@ -0,0 +1,3 @@
+from django.db import models
+
+# Create your models here.
diff --git a/authentication/serializers.py b/authentication/serializers.py
@@ -0,0 +1,33 @@
+from rest_framework import serializers
+from django.contrib.auth.models import User
+from rest_framework.validators import UniqueValidator
+from django.contrib.auth.password_validation import validate_password
+
+
+class RegisterSerializer(serializers.ModelSerializer):
+    email = serializers.EmailField(
+        required=True,
+        validators=[UniqueValidator(queryset=User.objects.all())]
+    )
+
+    password = serializers.CharField(write_only=True, required=True, validators=[validate_password])
+    password2 = serializers.CharField(write_only=True, required=True)
+
+    class Meta:
+        model = User
+        fields = ('username', 'password', 'password2', 'email', 'first_name', 'last_name')
+
+    def validate(self, attrs):
+        if attrs['password'] != attrs['password2']:
+            raise serializers.ValidationError({"password": "Password fields didn't match."})
+
+        return attrs
+
+    def create(self, validated_data):
+        del validated_data['password2']
+        user = User.objects.create(**validated_data)
+
+        user.set_password(validated_data['password'])
+        user.save()
+
+        return user
diff --git a/authentication/tests.py b/authentication/tests.py
@@ -0,0 +1,3 @@
+from django.test import TestCase
+
+# Create your tests here.
diff --git a/authentication/urls.py b/authentication/urls.py
@@ -0,0 +1,9 @@
+from django.urls import path
+from authentication.views import RegisterView
+from rest_framework_simplejwt.views import TokenObtainPairView, TokenRefreshView
+
+urlpatterns = [
+    path('token/', TokenObtainPairView.as_view(), name='token_obtain_pair'),
+    path('token/refresh/', TokenRefreshView.as_view(), name='token_refresh'),
+    path('register/', RegisterView.as_view(), name='auth_register'),
+]
diff --git a/authentication/views.py b/authentication/views.py
@@ -0,0 +1,10 @@
+from django.contrib.auth.models import User
+from rest_framework import generics
+from rest_framework.permissions import AllowAny
+from .serializers import RegisterSerializer
+
+
+class RegisterView(generics.CreateAPIView):
+    queryset = User.objects.all()
+    permission_classes = (AllowAny,)
+    serializer_class = RegisterSerializer
diff --git a/db.sqlite3 b/db.sqlite3
diff --git a/manage.py b/manage.py
@@ -1,4 +1,3 @@
-#!/usr/bin/env python
 import os
 import sys
 
diff --git a/movies/admin.py b/movies/admin.py
@@ -1,3 +1,4 @@
 from django.contrib import admin
+from .models import Movie
 
-# Register your models here.
+admin.site.register(Movie)
diff --git a/requirements.txt b/requirements.txt
@@ -1,4 +1,6 @@
-django==2.2.13
-djangorestframework==3.9.1
-django-rest-auth==0.9.3
-django-allauth==0.39.1
+asgiref==3.3.1
+Django==3.1.7
+django-filter==2.4.0
+djangorestframework==3.12.2
+pytz==2021.1
+sqlparse==0.4.1

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+from django.contrib import admin`
	`2`	`+`
	`3`	`+# Register your models here.`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+from django.db import models`
	`2`	`+`
	`3`	`+# Create your models here.`