stackoom
  简体   繁体   中英

dj-rest-auth How to authenticate user with REST_USE_JWT = True when testing

 原文  2022-12-23 04:20:01       django/ django-rest-framework/ django-testing/ dj-rest-auth

Question

I have Django Rest Framework site that use dj-rest-auth as authentication. I enable REST_USE_JWT = True in my settings.py . I want to test some API that require rest_framework.permissions.IsAuthenticated . I create client with rest_framework.test.APIClient() in my test. I try to login and view some API, but i got HTTP_401_UNAUTHORIZED . I try to login with post username, email, and password to dj-rest-auth login url, and got response access_token, refresh_token, etc. Then use credentials() to include it in header. But the client still got HTTP_401_UNAUTHORIZED . I don't know if i am doing it right. Please help me to authenticate the client in test. Thanks in advance!

class ProfileTests(APITestCase):
    @classmethod
    def setUpTestData(cls):
        cls.username = "test"
        cls.email = "test@test.com"
        cls.password = "test"
        cls.user = get_user_model().objects.create_user(
            username=cls.username,
            email=cls.email,
            password=cls.password,
        )

        cls.authenticated_client = APIClient()
        response = cls.authenticated_client.post(
            reverse("rest_login"),
            {
                "username": cls.username,
                "email": cls.email,
                "password": cls.password,
            },
            format="json"
        )
        cls.authenticated_client.credentials(HTTP_AUTHORIZATION=settings.JWT_AUTH_COOKIE + " " + response.data["access_token"])

1 answers

solution1
 0  2022-12-23 04:20:01

You can login through dj-rest-auth login url called rest_login and then get the access_token . After that you can use credentials() method from rest_framework.test.APIClient . This method can be used to set headers that will then be included on all subsequent requests by the test client. Here is the example

cls.authenticated_client = APIClient()
response = cls.authenticated_client.post(
    reverse("rest_login"),
    {
        "username": cls.username,
        "password": cls.password,
    },
    format="json"
)
cls.authenticated_client.credentials(HTTP_AUTHORIZATION="Bearer " + response.data["access_token"])

Notice that it use Bearer as Authorization header instead of Token . In order to clear the header just call credentials() with no parameter example cls.authenticated_client.credentials() . If you have another way to authenticate user during test with dj-rest-auth, feel free to add your answer in this questions

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question DRF, allauth and dj-rest-auth - Authenticate with inactive users return None instead the user object get auth token using dj-rest-auth when user logged in dj-rest-auth registration fetch FieldDoesNotExist error when using Dj-Rest-Auth registration with a custom user model that does not have a username field Django-rest-auth (dj-rest-auth) custom user registration How to show my reset password page in React using Django Rest Framework and Dj-rest-auth How to override verification email function in dj-rest-auth and all-auth? Is it possible to make email confirmation key shorter with dj-rest-auth? dj-rest-auth: ACCOUNT_LOGIN_ON_EMAIL_CONFIRMATION not working dj-rest-auth token not deleted in backend after logout
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM