📂drf
🔖drf认证
2022-10-01 08:29阅读: 56评论: 0推荐: 0

drf 认证失败统一响应码

现象

image

# 兜底认证,直接失败
class NoAuthentication(BaseAuthentication):
    def authenticate(self, request):
        raise AuthenticationFailed('认证失败')


class AuthenticationFailed(APIException):
    status_code = status.HTTP_401_UNAUTHORIZED
    default_detail = _('Incorrect authentication credentials.')
    default_code = 'authentication_failed'

当认证失败应该显示401,不是403

解决方案(每个认证类加入def authenticate_header)

# 参数取值认证
class ParamsAuthentication(BaseAuthentication):
    def authenticate(self, request):
        token = request.query_params.get('token')
        if not token:
            return
        return 'szw', token

    def authenticate_header(self, request):
        return 'API'


# header取值
class HeaderAuthentication(BaseAuthentication):

    def authenticate(self, request):
        token = request.META.get('HTTP_AUTHORIZATION')
        if not token:
            return
        return 'szw', token

    def authenticate_header(self, request):
        return 'API'


# 兜底认证,直接失败
class NoAuthentication(BaseAuthentication):
    def authenticate(self, request):
        raise AuthenticationFailed('认证失败')

    def authenticate_header(self, request):
        return 'API'

image

本文作者:Sherwin

本文链接:https://www.cnblogs.com/sherwin1995/p/16746728.html

版权声明:本作品采用知识共享署名-非商业性使用-禁止演绎 2.5 中国大陆许可协议进行许可。

posted @   Sherwin_szw  阅读(56)  评论(0编辑  收藏  举报
点击右上角即可分享
微信分享提示
💬
评论
📌
收藏
💗
关注
👍
推荐
🚀
回顶
收起
  1. 1 404 not found REOL
404 not found - REOL
00:00 / 00:00
An audio error has occurred.