Tivix/django-rest-auth
1
1
Fork 0
mirror of https://github.com/Tivix/django-rest-auth.git synced 2024-12-02 13:53:43 +03:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #83 from steverecio/rate_limiting

Browse Source 
Add DRF throttle scopes
This commit is contained in:
Michael 2020-06-03 18:39:22 -05:00 committed by GitHub
commit 9fdb513b5f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
dj_rest_auth/registration/views.py
View File

@ -36,6 +36,7 @@ class RegisterView(CreateAPIView):
serializer_class = RegisterSerializer serializer_class = RegisterSerializer
permission_classes = register_permission_classes() permission_classes = register_permission_classes()
token_model = TokenModel token_model = TokenModel
throttle_scope = 'dj_rest_auth'
@sensitive_post_parameters_m @sensitive_post_parameters_m
def dispatch(self, *args, **kwargs): def dispatch(self, *args, **kwargs):

5
dj_rest_auth/views.py
View File

@ -40,6 +40,7 @@ class LoginView(GenericAPIView):
permission_classes = (AllowAny,) permission_classes = (AllowAny,)
serializer_class = LoginSerializer serializer_class = LoginSerializer
token_model = TokenModel token_model = TokenModel
throttle_scope = 'dj_rest_auth'
@sensitive_post_parameters_m @sensitive_post_parameters_m
def dispatch(self, *args, **kwargs): def dispatch(self, *args, **kwargs):
@ -115,6 +116,7 @@ class LogoutView(APIView):
Accepts/Returns nothing. Accepts/Returns nothing.
""" """
permission_classes = (AllowAny,) permission_classes = (AllowAny,)
throttle_scope = 'dj_rest_auth'
def get(self, request, *args, **kwargs): def get(self, request, *args, **kwargs):
if getattr(settings, 'ACCOUNT_LOGOUT_ON_GET', False): if getattr(settings, 'ACCOUNT_LOGOUT_ON_GET', False):
@ -217,6 +219,7 @@ class PasswordResetView(GenericAPIView):
""" """
serializer_class = PasswordResetSerializer serializer_class = PasswordResetSerializer
permission_classes = (AllowAny,) permission_classes = (AllowAny,)
throttle_scope = 'dj_rest_auth'
def post(self, request, *args, **kwargs): def post(self, request, *args, **kwargs):
# Create a serializer with request.data # Create a serializer with request.data
@ -242,6 +245,7 @@ class PasswordResetConfirmView(GenericAPIView):
""" """
serializer_class = PasswordResetConfirmSerializer serializer_class = PasswordResetConfirmSerializer
permission_classes = (AllowAny,) permission_classes = (AllowAny,)
throttle_scope = 'dj_rest_auth'
@sensitive_post_parameters_m @sensitive_post_parameters_m
def dispatch(self, *args, **kwargs): def dispatch(self, *args, **kwargs):
@ -265,6 +269,7 @@ class PasswordChangeView(GenericAPIView):
""" """
serializer_class = PasswordChangeSerializer serializer_class = PasswordChangeSerializer
permission_classes = (IsAuthenticated,) permission_classes = (IsAuthenticated,)
throttle_scope = 'dj_rest_auth'
@sensitive_post_parameters_m @sensitive_post_parameters_m
def dispatch(self, *args, **kwargs): def dispatch(self, *args, **kwargs):