from django.contrib.auth import authenticate
from django.contrib.auth.models import AnonymousUser
from django.http import HttpResponse
class TokenAPIAuthentication(object):
def __init__(self, auth_func=authenticate, realm='API'):
self.auth_func = auth_func
self.realm = realm
def is_authenticated(self, request):
user_pk = request.POST.get("user") or request.GET.get("user")
token = request.POST.get("token") or request.GET.get("token")
if not user_pk or not token:
return False
request.user = self.auth_func(pk=user_pk, token=token) or AnonymousUser()
return not request.user in (False, None, AnonymousUser())
def challenge(self):
resp = HttpResponse("Authorization Required")
resp['WWW-Authenticate'] = 'Basic realm="%s"' % self.realm
resp.status_code = 401
return resp
Feed of latest snippets
Comments