how to load user from jwt token request django 1

how to load user from jwt token request django

from django.conf import settings
from rest_framework import authentication
from rest_framework import exceptions
from rest_framework.authentication import get_authorization_header
import CustomUser # just import your model here
import jwt

class JWTAuthentication(authentication.BaseAuthentication):
    def authenticate(self, request): # it will return user object
            token = get_authorization_header(request).decode('utf-8')
            if token is None or token == "null" or token.strip() == "":
                raise exceptions.AuthenticationFailed('Authorization Header or Token is missing on Request Headers')
            decoded = jwt.decode(token, settings.SECRET_KEY)
            username = decoded['username']
            user_obj = CustomUser.objects.get(username=username)
        except jwt.ExpiredSignature :
            raise exceptions.AuthenticationFailed('Token Expired, Please Login')
        except jwt.DecodeError :
            raise exceptions.AuthenticationFailed('Token Modified by thirdparty')
        except jwt.InvalidTokenError:
            raise exceptions.AuthenticationFailed('Invalid Token')
        except Exception as e:
            raise exceptions.AuthenticationFailed(e)
        return (user_obj, None)

    def get_user(self, userid):
            return CustomUser.objects.get(pk=userid)
        except Exception as e:
            return None

Here is what the above code is Doing:
1. It first checks if the Authorization header is present in the request.
2. If it is present, it will decode the token and try to authenticate the user.
3. If the token is invalid, it will raise an AuthenticationFailed exception.
4. If the token is valid, it will return the user object and None as the token.
5. If the Authorization header is not present, it will raise an AuthenticationFailed exception.

Similar Posts