2025-summer/team-3
12
Fork 0
Code Issues Pull requests Projects Releases Activity

new api secret system, multiple api secrets, limited scopes, etc...

Browse source
This commit is contained in:
Laura Klünder 2023-11-30 22:02:40 +01:00
parent 4307a7fc4d
commit 43791583e0
22 changed files with 404 additions and 156 deletions
Download patch file Download diff file Expand all files Collapse all files

6
src/c3nav/api/api.py
View file

@ -8,7 +8,7 @@ from rest_framework.exceptions import ParseError, PermissionDenied
from rest_framework.response import Response
from rest_framework.viewsets import ViewSet
from c3nav.api.models import Token
from c3nav.api.models import LoginToken
from c3nav.api.utils import get_api_post_data
@ -39,8 +39,8 @@ class SessionViewSet(ViewSet):
if 'token' in data:
try:
token = Token.get_by_token(data['token'])
except Token.DoesNotExist:
token = LoginToken.get_by_token(data['token'])
except LoginToken.DoesNotExist:
raise PermissionDenied(_('This token does not exist or is no longer valid.'))
user = token.user
elif 'username' in data: