mirror of
https://github.com/encode/django-rest-framework.git
synced 2024-11-26 03:23:59 +03:00
161dc2df2c
As of Django 1.11 the `authenticate` function accepts a request as an additional argument. This commit fixes compatibility between newer Django versions and custom authentication backends which already depend on the request object. See also: [Django 1.11 release](https://docs.djangoproject.com/en/1.11/releases/1.11/) ``` authenticate() now passes a request argument to the authenticate() method of authentication backends. Support for methods that don’t accept request as the first positional argument will be removed in Django 2.1. ```
39 lines
1.4 KiB
Python
39 lines
1.4 KiB
Python
from django.utils.translation import ugettext_lazy as _
|
|
|
|
from rest_framework import serializers
|
|
from rest_framework.compat import authenticate
|
|
|
|
|
|
class AuthTokenSerializer(serializers.Serializer):
|
|
username = serializers.CharField(label=_("Username"))
|
|
password = serializers.CharField(
|
|
label=_("Password"),
|
|
style={'input_type': 'password'},
|
|
trim_whitespace=False
|
|
)
|
|
|
|
def validate(self, attrs):
|
|
username = attrs.get('username')
|
|
password = attrs.get('password')
|
|
|
|
if username and password:
|
|
user = authenticate(request=self.context.get('request'),
|
|
username=username, password=password)
|
|
|
|
if user:
|
|
# From Django 1.10 onwards the `authenticate` call simply
|
|
# returns `None` for is_active=False users.
|
|
# (Assuming the default `ModelBackend` authentication backend.)
|
|
if not user.is_active:
|
|
msg = _('User account is disabled.')
|
|
raise serializers.ValidationError(msg, code='authorization')
|
|
else:
|
|
msg = _('Unable to log in with provided credentials.')
|
|
raise serializers.ValidationError(msg, code='authorization')
|
|
else:
|
|
msg = _('Must include "username" and "password".')
|
|
raise serializers.ValidationError(msg, code='authorization')
|
|
|
|
attrs['user'] = user
|
|
return attrs
|