Merge pull request #458 from asfaltboy/fix_authtoken_response

Fix authtoken response
2024-11-23 10:03:57 +03:00 · 2012-11-30 11:58:10 -08:00 · 2012-11-30 11:58:10 -08:00 · 52b12434d0
commit 52b12434d0
parent 8d485da483 1b9d0eefba
2 changed files with 3 additions and 3 deletions
--- a/rest_framework/authtoken/views.py
+++ b/rest_framework/authtoken/views.py
@ -18,7 +18,7 @@ class ObtainAuthToken(APIView):
        if serializer.is_valid():
            token, created = Token.objects.get_or_create(user=serializer.object['user'])
            return Response({'token': token.key})
-        return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)
+        return Response(serializer.errors, status=status.HTTP_401_UNAUTHORIZED)


 obtain_auth_token = ObtainAuthToken.as_view()
--- a/rest_framework/tests/authentication.py
+++ b/rest_framework/tests/authentication.py
@ -167,14 +167,14 @@ class TokenAuthTests(TestCase):
        client = Client(enforce_csrf_checks=True)
        response = client.post('/auth-token/login/', 
                               json.dumps({'username': self.username, 'password': "badpass"}), 'application/json')
-        self.assertEqual(response.status_code, 400)
+        self.assertEqual(response.status_code, 401)

    def test_token_login_json_missing_fields(self):
        """Ensure token login view using JSON POST fails if missing fields."""
        client = Client(enforce_csrf_checks=True)
        response = client.post('/auth-token/login/', 
                               json.dumps({'username': self.username}), 'application/json')
-        self.assertEqual(response.status_code, 400)
+        self.assertEqual(response.status_code, 401)

    def test_token_login_form(self):
        """Ensure token login view using form POST works."""