From dd14c6c88ba210bac8349041b8db486576539249 Mon Sep 17 00:00:00 2001 From: Tom Christie Date: Mon, 3 Nov 2014 11:21:29 +0000 Subject: Latest docs release --- api-guide/authentication.html | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) (limited to 'api-guide/authentication.html') diff --git a/api-guide/authentication.html b/api-guide/authentication.html index 3118ff34..420a1874 100644 --- a/api-guide/authentication.html +++ b/api-guide/authentication.html @@ -206,6 +206,7 @@ a.fusion-poweredby {
  • JSON Web Token Authentication
  • Hawk HTTP Authentication
  • HTTP Signature Authentication
    • +
  • Djoser
    • @@ -337,12 +338,13 @@ print token.key

    Generating Tokens

    If you want every user to have an automatically generated Token, you can simply catch the User's post_save signal.

    -
    from django.contrib.auth import get_user_model
+
    from django.conf import settings
+from django.contrib.auth import get_user_model
 from django.db.models.signals import post_save
 from django.dispatch import receiver
 from rest_framework.authtoken.models import Token
 
-@receiver(post_save, sender=get_user_model())
+@receiver(post_save, sender=settings.AUTH_USER_MODEL)
 def create_auth_token(sender, instance=None, created=False, **kwargs):
     if created:
         Token.objects.create(user=instance)
@@ -356,9 +358,10 @@ for user in User.objects.all():
     Token.objects.get_or_create(user=user)
 
    
 
    When using TokenAuthentication, you may want to provide a mechanism for clients to obtain a token given the username and password.  REST framework provides a built-in view to provide this behavior.  To use it, add the obtain_auth_token view to your URLconf:
    
-
    urlpatterns += patterns('',
-    url(r'^api-token-auth/', 'rest_framework.authtoken.views.obtain_auth_token')
-)
+
    from rest_framework.authtoken import views
+urlpatterns += [
+    url(r'^api-token-auth/', views.obtain_auth_token)
+]
 
    
 
    Note that the URL part of the pattern can be whatever you want to use.
    
 
    The obtain_auth_token view will return a JSON response when valid username and password fields are POSTed to the view using form data or JSON:
    
@@ -508,6 +511,8 @@ class ExampleAuthentication(authentication.BaseAuthentication):
 
    The HawkREST library builds on the Mohawk library to let you work with Hawk signed requests and responses in your API. Hawk lets two parties securely communicate with each other using messages signed by a shared key. It is based on HTTP MAC access authentication (which was based on parts of OAuth 1.0).
    
 
    HTTP Signature Authentication
    
 
    HTTP Signature (currently a IETF draft) provides a way to achieve origin authentication and message integrity for HTTP messages. Similar to Amazon's HTTP Signature scheme, used by many of its services, it permits stateless, per-request authentication. Elvio Toccalino maintains the djangorestframework-httpsignature package which provides an easy to use HTTP Signature Authentication mechanism.
    
+
    Djoser
    
+
    Djoser library provides a set of views to handle basic actions such as registration, login, logout, password reset and account activation. The package works with a custom user model and it uses token based authentication. This is a ready to use REST implementation of Django authentication system.
    -- cgit v1.2.3