Tivix/django-rest-auth
1
1
Fork 0
mirror of https://github.com/Tivix/django-rest-auth.git synced 2024-12-02 13:53:43 +03:00
Code Issues Packages Projects Releases Wiki Activity

add DRF throttle scopes to relevant rest auth views

Browse Source
This commit is contained in:
Steve Recio 2020-01-10 17:47:54 -05:00
parent 624ad01afb
commit 596cbee153
2 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
rest_auth/registration/views.py
View File

@ -40,6 +40,7 @@ class RegisterView(CreateAPIView):
serializer_class = RegisterSerializer serializer_class = RegisterSerializer
permission_classes = register_permission_classes() permission_classes = register_permission_classes()
token_model = TokenModel token_model = TokenModel
throttle_scope = 'rest_auth'
@sensitive_post_parameters_m @sensitive_post_parameters_m
def dispatch(self, *args, **kwargs): def dispatch(self, *args, **kwargs):

5
rest_auth/views.py
View File

@ -43,6 +43,7 @@ class LoginView(GenericAPIView):
permission_classes = (AllowAny,) permission_classes = (AllowAny,)
serializer_class = LoginSerializer serializer_class = LoginSerializer
token_model = TokenModel token_model = TokenModel
throttle_scope = 'rest_auth'
@sensitive_post_parameters_m @sensitive_post_parameters_m
def dispatch(self, *args, **kwargs): def dispatch(self, *args, **kwargs):
@ -114,6 +115,7 @@ class LogoutView(APIView):
Accepts/Returns nothing. Accepts/Returns nothing.
""" """
permission_classes = (AllowAny,) permission_classes = (AllowAny,)
throttle_scope = 'rest_auth'
def get(self, request, *args, **kwargs): def get(self, request, *args, **kwargs):
if getattr(settings, 'ACCOUNT_LOGOUT_ON_GET', False): if getattr(settings, 'ACCOUNT_LOGOUT_ON_GET', False):
@ -178,6 +180,7 @@ class PasswordResetView(GenericAPIView):
""" """
serializer_class = PasswordResetSerializer serializer_class = PasswordResetSerializer
permission_classes = (AllowAny,) permission_classes = (AllowAny,)
throttle_scope = 'rest_auth'
def post(self, request, *args, **kwargs): def post(self, request, *args, **kwargs):
# Create a serializer with request.data # Create a serializer with request.data
@ -203,6 +206,7 @@ class PasswordResetConfirmView(GenericAPIView):
""" """
serializer_class = PasswordResetConfirmSerializer serializer_class = PasswordResetConfirmSerializer
permission_classes = (AllowAny,) permission_classes = (AllowAny,)
throttle_scope = 'rest_auth'
@sensitive_post_parameters_m @sensitive_post_parameters_m
def dispatch(self, *args, **kwargs): def dispatch(self, *args, **kwargs):
@ -226,6 +230,7 @@ class PasswordChangeView(GenericAPIView):
""" """
serializer_class = PasswordChangeSerializer serializer_class = PasswordChangeSerializer
permission_classes = (IsAuthenticated,) permission_classes = (IsAuthenticated,)
throttle_scope = 'rest_auth'
@sensitive_post_parameters_m @sensitive_post_parameters_m
def dispatch(self, *args, **kwargs): def dispatch(self, *args, **kwargs):