Tivix/django-rest-auth
1
1
Fork 0
mirror of https://github.com/Tivix/django-rest-auth.git synced 2025-07-23 14:09:46 +03:00
Code Issues Packages Projects Releases Wiki Activity

Social login also accepts an authentication code instead of an access token.

Browse Source
This commit is contained in:
Philippe Luickx 2015-04-12 20:18:03 +03:00
parent 6eb0146c2b
commit bb5ac3e7ea
3 changed files with 47 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
docs/api_endpoints.rst
View File

@ -73,3 +73,4 @@ Basing on example from installation section :doc:`Installation </installation>`
- /rest-auth/facebook/ (POST) - /rest-auth/facebook/ (POST)
- access_token - access_token
- code

34
rest_auth/registration/serializers.py
View File

@ -9,15 +9,17 @@ class SocialLoginSerializer(serializers.Serializer):
access_token = serializers.CharField(required=True) access_token = serializers.CharField(required=True)
def validate(self, attrs): def validate(self, attrs):
access_token = attrs.get('access_token')
view = self.context.get('view') view = self.context.get('view')
request = self.context.get('request') request = self.context.get('request')
if not isinstance(request, HttpRequest): if not isinstance(request, HttpRequest):
request = request._request request = request._request
if not view: if not view:
raise serializers.ValidationError('View is not defined, pass it ' + raise serializers.ValidationError(
'as a context variable') 'View is not defined, pass it ' +
'as a context variable'
)
self.adapter_class = getattr(view, 'adapter_class', None) self.adapter_class = getattr(view, 'adapter_class', None)
if not self.adapter_class: if not self.adapter_class:
@ -25,6 +27,32 @@ class SocialLoginSerializer(serializers.Serializer):
self.adapter = self.adapter_class() self.adapter = self.adapter_class()
app = self.adapter.get_provider().get_app(request) app = self.adapter.get_provider().get_app(request)
# More info on code vs access_token
# http://stackoverflow.com/questions/8666316/facebook-oauth-2-0-code-and-token
# We have the access_token straight
if('access_token' in attrs):
access_token = attrs.get('access_token')
# We did not get the access_token, but authorization code instead
elif('code' in attrs):
code = attrs.get('code')
callback_url = self.callback_url
provider = self.adapter.get_provider()
scope = provider.get_scope(request)
client = self.adapter_class(
request,
app.client_id,
app.secret,
self.adapter.access_token_method,
self.adapter.access_token_url,
callback_url,
scope
)
token = client.get_access_token(code)
access_token = token['access_token']
token = self.adapter.parse_token({'access_token': access_token}) token = self.adapter.parse_token({'access_token': access_token})
token.app = app token.app = app

16
rest_auth/registration/views.py
View File

@ -72,11 +72,25 @@ class VerifyEmail(APIView, ConfirmEmailView):
class SocialLogin(Login): class SocialLogin(Login):
""" """
class used for social authentications class used for social authentications
example usage for facebook example usage for facebook with access_token
-------------
from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter
class FacebookLogin(SocialLogin): class FacebookLogin(SocialLogin):
adapter_class = FacebookOAuth2Adapter adapter_class = FacebookOAuth2Adapter
-------------
example usage for facebook with code
from allauth.socialaccount.providers.facebook.views import FacebookOAuth2Adapter
from allauth.socialaccount.providers.oauth2.client import OAuth2Client
class FacebookLogin(SocialLogin):
adapter_class = FacebookOAuth2Adapter
client_class = OAuth2Client
callback_url = 'localhost:8000'
-------------
""" """
serializer_class = SocialLoginSerializer serializer_class = SocialLoginSerializer