Skip to content
This repository has been archived by the owner on May 26, 2020. It is now read-only.

setting JWT_PAYLOAD_GET_USER_ID_HANDLER ignored #380

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

setting JWT_PAYLOAD_GET_USER_ID_HANDLER ignored #380

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
7900f10
setting JWT_PAYLOAD_GET_USER_ID_HANDLER ignored
SPKorhonen Sep 22, 2017
93d2bfe
Added tests for jwt_get_secret_key with custom user_id and secret get…
SPKorhonen Sep 26, 2017
1ac5646
Formatting fixes for flake8
SPKorhonen Sep 26, 2017
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion rest_framework_jwt/utils.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ def jwt_get_secret_key(payload=None):
"""
if api_settings.JWT_GET_USER_SECRET_KEY:
User = get_user_model() # noqa: N806
user = User.objects.get(pk=payload.get('user_id'))
user = User.objects.get(pk=api_settings.JWT_PAYLOAD_GET_USER_ID_HANDLER(payload))
key = str(api_settings.JWT_GET_USER_SECRET_KEY(user))
return key
return api_settings.JWT_SECRET_KEY
Expand Down
23 changes: 23 additions & 0 deletions tests/test_utils.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,11 +4,13 @@

import jwt.exceptions
from django.test import TestCase
from django.conf import settings

from rest_framework_jwt import utils
from rest_framework_jwt.compat import get_user_model
from rest_framework_jwt.settings import api_settings, DEFAULTS
from tests.models import CustomUserWithoutEmail
from tests.utils import custom_get_user_id, custom_get_user_secret

User = get_user_model()

Expand Down Expand Up @@ -82,6 +84,27 @@ def test_jwt_decode_verify_exp(self):

api_settings.JWT_VERIFY_EXPIRATION = True

def test_jwt_get_secret_key(self):
secret = utils.jwt_get_secret_key({'user_id': self.user.pk})
self.assertEqual(secret, settings.SECRET_KEY)

def test_jwt_get_secret_key_customer_secret_getter(self):
old = api_settings.JWT_GET_USER_SECRET_KEY
api_settings.JWT_GET_USER_SECRET_KEY = custom_get_user_secret
secret = utils.jwt_get_secret_key({'user_id': self.user.pk})
api_settings.JWT_GET_USER_SECRET_KEY = old
self.assertEqual(secret, str(self.user.pk))

def test_jwt_get_secret_key_customer_id_and_secret_getter(self):
old = api_settings.JWT_GET_USER_SECRET_KEY
api_settings.JWT_GET_USER_SECRET_KEY = custom_get_user_secret
old2 = api_settings.JWT_PAYLOAD_GET_USER_ID_HANDLER
api_settings.JWT_PAYLOAD_GET_USER_ID_HANDLER = custom_get_user_id
secret = utils.jwt_get_secret_key({'custom_uid': self.user.pk})
api_settings.JWT_PAYLOAD_GET_USER_ID_HANDLER = old2
api_settings.JWT_GET_USER_SECRET_KEY = old
self.assertEqual(secret, str(self.user.pk))


class TestAudience(TestCase):
def setUp(self):
Expand Down
8 changes: 8 additions & 0 deletions tests/utils.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,3 +24,11 @@ def jwt_response_payload_handler(token, user=None, request=None):

def get_jwt_secret(user):
return user.jwt_secret


def custom_get_user_secret(user):
return user.pk


def custom_get_user_id(payload):
return payload.get('custom_uid', None)