tessl/pypi-djangorestframework-jwt
JSON Web Token based authentication for Django REST framework
—
Pending
Does it follow best practices?
Impact
Pending
No eval scenarios have been run
Pending
The risk profile of this skill
Django REST Framework JWT
JSON Web Token authentication for Django REST Framework, providing secure stateless authentication for web APIs. This package implements JWT-based authentication classes, token generation and validation utilities, custom serializers for authentication endpoints, and configurable settings for token expiration, refresh mechanisms, and payload customization.
Package Information
- Package Name: djangorestframework-jwt
- Language: Python
- Installation:
pip install djangorestframework-jwt - Django REST Framework Integration: Add to
INSTALLED_APPSandREST_FRAMEWORKsettings
Core Imports
from rest_framework_jwt.authentication import JSONWebTokenAuthentication
from rest_framework_jwt.views import obtain_jwt_token, refresh_jwt_token, verify_jwt_tokenFor utilities and configuration:
from rest_framework_jwt.utils import jwt_payload_handler, jwt_encode_handler, jwt_decode_handler
from rest_framework_jwt.settings import api_settingsBasic Usage
# In Django settings.py
INSTALLED_APPS = [
# ... other apps
'rest_framework',
'rest_framework_jwt',
]
REST_FRAMEWORK = {
'DEFAULT_AUTHENTICATION_CLASSES': [
'rest_framework_jwt.authentication.JSONWebTokenAuthentication',
],
}
# In urls.py
from rest_framework_jwt.views import obtain_jwt_token, refresh_jwt_token
urlpatterns = [
path('api-token-auth/', obtain_jwt_token),
path('api-token-refresh/', refresh_jwt_token),
]
# Client-side token usage
import requests
# Obtain token
response = requests.post('http://example.com/api-token-auth/', {
'username': 'user@example.com',
'password': 'password123'
})
token = response.json()['token']
# Use token for authenticated requests
headers = {'Authorization': f'JWT {token}'}
response = requests.get('http://example.com/api/protected/', headers=headers)Architecture
The JWT authentication system is built around these core components:
- Authentication Classes: Handle JWT validation and user authentication for incoming requests
- Views: Provide API endpoints for token operations (obtain, refresh, verify)
- Serializers: Validate input data and process authentication logic
- Utilities: Core JWT encoding/decoding functions and payload handling
- Settings: Centralized configuration system for JWT behavior
This modular design enables flexible JWT authentication that integrates seamlessly with Django REST Framework's authentication pipeline while supporting various token workflows including refresh tokens, cookie-based storage, and custom payload handling.
Capabilities
Authentication Classes
Core authentication backend classes that integrate with Django REST Framework's authentication system to validate JWTs and authenticate users.
class BaseJSONWebTokenAuthentication(BaseAuthentication):
def authenticate(self, request): ...
def authenticate_credentials(self, payload): ...
def get_jwt_value(self, request): ...
class JSONWebTokenAuthentication(BaseJSONWebTokenAuthentication):
def get_jwt_value(self, request): ...
def authenticate_header(self, request): ...JWT Utilities
Essential functions for JWT token creation, validation, and payload management, including encoding/decoding handlers and customizable payload processing.
def jwt_payload_handler(user): ...
def jwt_encode_handler(payload): ...
def jwt_decode_handler(token): ...
def jwt_get_secret_key(payload=None): ...
def jwt_get_username_from_payload_handler(payload): ...
def jwt_get_user_id_from_payload_handler(payload): ... # deprecated
def jwt_response_payload_handler(token, user=None, request=None): ...API Views and Endpoints
Ready-to-use API views for JWT token operations including token generation, verification, and refresh functionality.
class JSONWebTokenAPIView(APIView): ...
class ObtainJSONWebToken(JSONWebTokenAPIView): ...
class VerifyJSONWebToken(JSONWebTokenAPIView): ...
class RefreshJSONWebToken(JSONWebTokenAPIView): ...
# Function-based views
obtain_jwt_token: callable
refresh_jwt_token: callable
verify_jwt_token: callableSerializers
Validation and processing classes for JWT authentication workflows, handling user credentials, token verification, and refresh operations.
class JSONWebTokenSerializer(Serializer):
def validate(self, attrs): ...
class VerificationBaseSerializer(Serializer):
def validate(self, attrs): ...
def _check_payload(self, token): ...
def _check_user(self, payload): ...
class VerifyJSONWebTokenSerializer(VerificationBaseSerializer):
def validate(self, attrs): ...
class RefreshJSONWebTokenSerializer(VerificationBaseSerializer):
def validate(self, attrs): ...Configuration and Settings
Comprehensive configuration system for customizing JWT behavior including token expiration, algorithms, secret keys, and handler functions.
# Access configuration
from rest_framework_jwt.settings import api_settings
# Key configuration settings
api_settings.JWT_SECRET_KEY: str
api_settings.JWT_ALGORITHM: str
api_settings.JWT_EXPIRATION_DELTA: timedelta
api_settings.JWT_ALLOW_REFRESH: bool
api_settings.JWT_AUTH_HEADER_PREFIX: strCompatibility Utilities
Helper functions and classes for cross-version compatibility and Django integration, including user model handling and field utilities.
def get_username_field(): ...
def get_username(user): ...
class PasswordField(CharField): ...
class Serializer(serializers.Serializer): ...Types and Interfaces
# Django/DRF Types (from framework)
from django.contrib.auth.models import AbstractUser
from rest_framework.authentication import BaseAuthentication
from rest_framework.serializers import Serializer as BaseSerializer
from rest_framework.views import APIView
from rest_framework.request import Request
from rest_framework.response import Response
# JWT Payload Structure
JWTPayload = Dict[str, Any] # Contains user_id, username, exp, etc.
# Configuration Types
JWTSettings = APISettings # From rest_framework.settings
# Handler Function Types
PayloadHandler = Callable[[AbstractUser], JWTPayload]
EncodeHandler = Callable[[JWTPayload], str]
DecodeHandler = Callable[[str], JWTPayload]
ResponseHandler = Callable[[str, Optional[AbstractUser], Optional[Request]], Dict[str, Any]]- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
- Publish Source
- CLI
- Badge
'%3e%3cpath%20d='M3.389%209.069c0-.009.043-.033.029-.044L.029%207.77l3.287-1.197L6.574%207.77l.106.083.005%204-3.297%201.185V9.068ZM13.582%209.32V2.74l3.405%201.238v4.104L13.583%209.32ZM10.253%2014.66l-3.476%201.268v-4.027l3.476-1.313v4.072ZM10.253%2010.558l-3.476%201.239V7.784l3.476-1.268v4.042ZM10.253%2014.719v3.968L6.777%2020v-3.998l3.476-1.283ZM17%208.139v4.042l-3.418%201.239V9.378L17%208.138ZM3.3%2017.168%200%2015.943v-4.027l3.3%201.224v4.028ZM6.69%2011.916v4.027l-3.302%201.225v-4.072l3.301-1.18ZM6.69%203.743v4.012l-3.33-1.21V2.564l3.33%201.18Z'/%3e%3cpath%20d='M3.3%2013.066%200%2011.842V7.844l3.3%201.224v3.998ZM13.524%209.334l-.175.088.175-.014v4.027l-3.152%201.183-.06-.032v-3.983l1.986-.767-.111.006-1.876.657V6.531l3.213-1.224v4.027Zm-.263.133c-.065.008-.198.023-.233.088.065-.008.198-.023.233-.088Zm-.321.118c-.065.008-.198.023-.233.088.065-.009.198-.023.233-.088Zm-.321.118c-.066.008-.199.023-.234.088.065-.008.199-.023.234-.088ZM13.524%201.266v3.968l-3.213%201.195V2.46l3.213-1.194ZM10.253%202.475v3.968L6.777%207.726V3.743l3.476-1.268ZM8.2%204.458c-.304.064-.627.5-.708.79-.27.963.636%201.081%201.091.364.277-.437.354-1.308-.383-1.154ZM13.524%2013.51v3.983l-3.17%201.177c-.011%200-.043-.067-.043-.07v-3.895l3.213-1.195Zm-.884%201.63c-.495.085-1.068%201.015-.676%201.435.483.517%201.502-.636%201.147-1.246-.098-.169-.286-.221-.47-.19ZM10.165%202.387l-.037.065-3.395%201.249-3.345-1.212L6.88%201.21l3.285%201.178ZM13.437%201.177l-.088.073-3.057%201.127-3.034-1.082-.277-.133L10.151%200l3.286%201.177Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h17v20H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
