django-rest-auth/docs/api_endpoints.rst

API endpoints
=============

Basic
-----

- /rest-auth/login/ (POST)

    - username (string)
    - email (string)
    - password (string)


- /rest-auth/logout/ (POST, GET)

    .. note:: ``ACCOUNT_LOGOUT_ON_GET = True`` to allow logout using GET (this is the exact same conf from allauth)

    - token

- /rest-auth/password/reset/ (POST)

    - email

- /rest-auth/password/reset/confirm/ (POST)

    - uid
    - token
    - new_password1
    - new_password2

    .. note:: uid and token are sent in email after calling /rest-auth/password/reset/

- /rest-auth/password/change/ (POST)

    - new_password1
    - new_password2
    - old_password
    - token


    .. note:: ``OLD_PASSWORD_FIELD_ENABLED = True`` to use old_password.
    .. note:: ``LOGOUT_ON_PASSWORD_CHANGE = False`` to keep the user logged in after password change

- /rest-auth/user/ (GET)

- /rest-auth/user/ (PUT/PATCH)

    - username
    - first_name
    - last_name
    - email
    - token


Registration
------------

- /rest-auth/registration/ (POST)

    - username
    - password1
    - password2
    - email

- /rest-auth/registration/verify-email/ (POST)

    - key


Social Media Authentication
---------------------------

Basing on example from installation section :doc:`Installation </installation>`

- /rest-auth/facebook/ (POST)

    - access_token
    - code

    .. note:: ``access_token`` OR ``code`` can be used as standalone arguments, see https://github.com/Tivix/django-rest-auth/blob/master/rest_auth/registration/views.py

- /rest-auth/twitter/ (POST)

    - access_token
    - token_secret
draft version of documentation 2014-10-09 15:01:47 +04:00			`API endpoints`
			`=============`

			`Basic`
			`-----`

update documentation 2014-10-09 16:16:39 +04:00			`- /rest-auth/login/ (POST)`
draft version of documentation 2014-10-09 15:01:47 +04:00
			`- username (string)`
Cleaned up LoginSerializer codebase 2016-01-06 03:18:13 +03:00			`- email (string)`
draft version of documentation 2014-10-09 15:01:47 +04:00			`- password (string)`


Allow logout on GET 2016-01-09 06:11:35 +03:00			`- /rest-auth/logout/ (POST, GET)`

			.. note:: ``ACCOUNT_LOGOUT_ON_GET = True`` to allow logout using GET (this is the exact same conf from allauth)
draft version of documentation 2014-10-09 15:01:47 +04:00
Adds token to logout API documentation 2016-02-09 01:35:37 +03:00			`- token`

update documentation 2014-10-09 16:16:39 +04:00			`- /rest-auth/password/reset/ (POST)`
draft version of documentation 2014-10-09 15:01:47 +04:00
			`- email`

make all endpoints browsable 2014-11-12 12:33:29 +03:00			`- /rest-auth/password/reset/confirm/ (POST)`
draft version of documentation 2014-10-09 15:01:47 +04:00
			`- uid`
			`- token`
			`- new_password1`
			`- new_password2`

update documentation 2014-10-09 16:16:39 +04:00			`.. note:: uid and token are sent in email after calling /rest-auth/password/reset/`

			`- /rest-auth/password/change/ (POST)`
draft version of documentation 2014-10-09 15:01:47 +04:00
			`- new_password1`
			`- new_password2`
Added old password to Password Change 2015-05-22 22:47:06 +03:00			`- old_password`
Added missing variable "token" 2016-07-29 15:54:49 +03:00			`- token`
Don't log the user out after change password - Django 1.7 2015-10-18 07:20:50 +03:00

Note for old_password. 2015-05-22 22:58:40 +03:00			.. note:: ``OLD_PASSWORD_FIELD_ENABLED = True`` to use old_password.
Don't log the user out after change password - Django 1.7 2015-10-18 07:20:50 +03:00			.. note:: ``LOGOUT_ON_PASSWORD_CHANGE = False`` to keep the user logged in after password change
draft version of documentation 2014-10-09 15:01:47 +04:00
update documentation 2014-10-09 16:16:39 +04:00			`- /rest-auth/user/ (GET)`
draft version of documentation 2014-10-09 15:01:47 +04:00
update documentation 2014-10-09 16:16:39 +04:00			`- /rest-auth/user/ (PUT/PATCH)`
draft version of documentation 2014-10-09 15:01:47 +04:00
			`- username`
			`- first_name`
			`- last_name`
			`- email`
Added missing variable "token" 2016-07-29 15:54:49 +03:00			`- token`
draft version of documentation 2014-10-09 15:01:47 +04:00

			`Registration`
			`------------`
update documentation 2014-10-09 16:16:39 +04:00
			`- /rest-auth/registration/ (POST)`

			`- username`
			`- password1`
			`- password2`
			`- email`

update demo project - still not finished 2014-10-15 19:32:19 +04:00			`- /rest-auth/registration/verify-email/ (POST)`
update documentation 2014-10-09 16:16:39 +04:00
			`- key`


			`Social Media Authentication`
			`---------------------------`

			Basing on example from installation section :doc:`Installation </installation>`

			`- /rest-auth/facebook/ (POST)`

			`- access_token`
now also accepting authorization codes from social login (e.g. facebook) 2015-08-07 13:26:57 +03:00			`- code`
Updated api_endpoints.rst with twitter login 2016-02-23 14:48:30 +03:00
Add info to docs and comments + Add comments by @chubz regarding django-allauth hmac pattern from PR #233 + Cleanup 2016-10-25 00:23:44 +03:00			.. note:: ``access_token`` OR ``code`` can be used as standalone arguments, see https://github.com/Tivix/django-rest-auth/blob/master/rest_auth/registration/views.py

Updated api_endpoints.rst with twitter login 2016-02-23 14:48:30 +03:00			`- /rest-auth/twitter/ (POST)`

			`- access_token`
			`- token_secret`