| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 |
- from calendar import timegm
- from datetime import datetime
- from django import forms
- from django.contrib.auth import authenticate
- from jwt_auth import settings
- from jwt_auth.compat import User
- jwt_payload_handler = settings.JWT_PAYLOAD_HANDLER
- jwt_encode_handler = settings.JWT_ENCODE_HANDLER
- jwt_decode_handler = settings.JWT_DECODE_HANDLER
- jwt_get_user_id_from_payload = settings.JWT_PAYLOAD_GET_USER_ID_HANDLER
- class JSONWebTokenForm(forms.Form):
- password = forms.CharField()
- def __init__(self, *args, **kwargs):
- super(JSONWebTokenForm, self).__init__(*args, **kwargs)
- # Dynamically add the USERNAME_FIELD to self.fields.
- self.fields[self.username_field] = forms.CharField()
- @property
- def username_field(self):
- try:
- return User.USERNAME_FIELD
- except AttributeError:
- return 'username'
- def clean(self):
- cleaned_data = super(JSONWebTokenForm, self).clean()
- credentials = {
- self.username_field: cleaned_data.get(self.username_field),
- 'password': cleaned_data.get('password')
- }
- if all(credentials.values()):
- user = authenticate(**credentials)
- if user:
- if not user.is_active:
- msg = 'User account is disabled.'
- raise forms.ValidationError(msg)
- payload = jwt_payload_handler(user)
- # Include original issued at time for a brand new token,
- # to allow token refresh
- if settings.JWT_ALLOW_REFRESH:
- payload['orig_iat'] = timegm(
- datetime.utcnow().utctimetuple()
- )
- self.object = {
- 'token': jwt_encode_handler(payload)
- }
- else:
- msg = 'Unable to login with provided credentials.'
- raise forms.ValidationError(msg)
- else:
- msg = 'Must include "username" and "password"'
- raise forms.ValidationError(msg)
|
