LIL-306. Add token based auth for navigate to edit from admin page

8 years ago · f8b0d68bb3
parent 317db4a86f
commit f8b0d68bb3
2 changed files with 19 additions and 0 deletions
--- a/apps/auth/middleware.py
+++ b/apps/auth/middleware.py
@ -0,0 +1,18 @@
+from django.contrib.auth import login
+from django.utils.deprecation import MiddlewareMixin
+
+from rest_framework.authtoken.models import Token
+
+
+class TokenAuthLoginMiddleware(MiddlewareMixin):
+
+    def process_request(self, request):
+        if 'token' in request.GET:
+            token = request.GET.get('token')
+            if token:
+                try:
+                    token = Token.objects.get(key=token)
+                    user = token.user
+                    login(request, user)
+                except Token.DoesNotExist:
+                    pass
--- a/project/settings.py
+++ b/project/settings.py
@ -73,6 +73,7 @@ MIDDLEWARE = [
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    'django.contrib.messages.middleware.MessageMiddleware',
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
+    'apps.auth.middleware.TokenAuthLoginMiddleware',
 ]
 if DEBUG:
    MIDDLEWARE += ['silk.middleware.SilkyMiddleware']