4

我已经将 OAuth2.0 与 django-rest-framework 集成在一起。当我将经过身份验证的请求发送到基于类的视图时,我得到了这个

{
    "detail": "You do not have permission to perform this action."
}

设置.py

REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': (
        'oauth2_provider.contrib.rest_framework.OAuth2Authentication',
    ),
    'DEFAULT_PERMISSION_CLASSES': (
        'rest_framework.permissions.IsAuthenticated',
    )
}

视图.py

    from rest_framework import permissions
    from oauth2_provider.contrib.rest_framework import TokenHasReadWriteScope
    class LogoutView(APIView):
        """
            This will help in logout of user.
        """
        authentication_classes = ()
        permission_classes = (permissions.IsAuthenticated, TokenHasReadWriteScope)

        def get(self, request):
            return Response({'s': 'd'})

网址.py

from django.urls import path, re_path
from accounts.views import SignUpView, LoginView, LogoutView

urlpatterns = [
    path('signup/', SignUpView.as_view()),
    path('login/', LoginView.as_view()),
    path('logout/', LogoutView.as_view()),
]

这就是我的标题的样子

Content-Type:application/json
Authorization:Bearer 4A7qGgmHpbEWlJn5w4wCwxJ9jWfTZ5

这是我生成的访问令牌。

4

1 回答 1

8

确保您的文件中有以下内容settings.py

AUTHENTICATION_BACKENDS = (
    'oauth2_provider.backends.OAuth2Backend',
    'django.contrib.auth.backends.ModelBackend'
)

和:

OAUTH2_PROVIDER = {
    'REFRESH_TOKEN_EXPIRE_SECONDS': 360000,
    'SCOPES': {'read': 'Read scope', 'write': 'Write scope', 'groups': 'Access to your groups'},
    'ACCESS_TOKEN_EXPIRE_SECONDS': 1800
}

出于调试目的:

  • authentication_classes = ()从 view.py 中删除
  • TokenHasReadWriteScope从 view.py 中删除

如果你想创建一个注销端点,我建议oauth2_views在你的 urls.py 中使用:

from oauth2_provider import views as oauth2_views
#.....

urlpatterns = [
    #....
    url(r'^logout/$', oauth2_views.RevokeTokenView.as_view()),
]
于 2018-02-15T12:03:53.790 回答