django-rest-auth/dj_rest_auth/jwt_auth.py

from django.conf import settings
from rest_framework_simplejwt.authentication import JWTAuthentication


class JWTCookieAuthentication(JWTAuthentication):
    """
    An authentication plugin that hopefully authenticates requests through a JSON web
    token provided in a request cookie (and through the header as normal, with a
    preference to the header).
    """

    def authenticate(self, request):
        cookie_name = getattr(settings, 'JWT_AUTH_COOKIE', None)
        header = self.get_header(request)
        if header is None:
            if cookie_name:
                raw_token = request.COOKIES.get(cookie_name)
            else:
                return None
        else:
            raw_token = self.get_raw_token(header)

        if raw_token is None:
            return None

        validated_token = self.get_validated_token(raw_token)
        return self.get_user(validated_token), validated_token
Moved jwt auth class to separate file to avoid hard dependency. 2020-06-23 20:28:18 +03:00			`from django.conf import settings`
			`from rest_framework_simplejwt.authentication import JWTAuthentication`


			`class JWTCookieAuthentication(JWTAuthentication):`
			`"""`
			`An authentication plugin that hopefully authenticates requests through a JSON web`
			`token provided in a request cookie (and through the header as normal, with a`
			`preference to the header).`
			`"""`

			`def authenticate(self, request):`
			`cookie_name = getattr(settings, 'JWT_AUTH_COOKIE', None)`
			`header = self.get_header(request)`
			`if header is None:`
			`if cookie_name:`
			`raw_token = request.COOKIES.get(cookie_name)`
			`else:`
			`return None`
			`else:`
			`raw_token = self.get_raw_token(header)`

			`if raw_token is None:`
			`return None`

			`validated_token = self.get_validated_token(raw_token)`
			`return self.get_user(validated_token), validated_token`