APDS-85 - [BE] move permanent token authentication to a separate library #1

poxip · 2017-08-03T09:45:38Z

No description provided.

coveralls · 2017-08-03T11:35:52Z

Changes Unknown when pulling 091143f on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T12:31:08Z

Changes Unknown when pulling f5d3231 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T13:04:30Z

Changes Unknown when pulling b0a4c73 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T13:34:33Z

Changes Unknown when pulling b0a4c73 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T13:54:05Z

Changes Unknown when pulling 59da092 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T14:21:38Z

Changes Unknown when pulling e259db6 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T14:21:38Z

Changes Unknown when pulling e259db6 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T14:21:38Z

Changes Unknown when pulling e259db6 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T14:21:39Z

Changes Unknown when pulling e259db6 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T14:21:39Z

Changes Unknown when pulling e259db6 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T14:21:39Z

Changes Unknown when pulling e259db6 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T14:39:50Z

Changes Unknown when pulling 298ad91 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T14:56:30Z

Changes Unknown when pulling 298ad91 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T15:19:02Z

Changes Unknown when pulling 3d19d8f on feature/APDS-85 into ** on master**.

coveralls · 2017-08-03T15:44:25Z

Changes Unknown when pulling 3d19d8f on feature/APDS-85 into ** on master**.

Things that came out during implementing the library in demo api

coveralls · 2017-08-03T18:56:53Z

Changes Unknown when pulling f086e21 on feature/APDS-85 into ** on master**.

coveralls · 2017-08-04T08:06:25Z

Changes Unknown when pulling bd58aa5 on feature/APDS-85 into ** on master**.

remik

Minor comment.

remik · 2017-08-04T09:08:25Z

CHANGELOG.txt

@@ -0,0 +1,2 @@
+# Change Log
+All notable changes to this project will be documented in this file.


Add 0.1 with initial version

Okay, I will change it to 1.0.0 (as we talked about it, we will use semver).

coveralls · 2017-08-04T09:44:18Z

Changes Unknown when pulling 1e88eb7 on feature/APDS-85 into ** on master**.

pkrzyzaniak

Two things for the future:

there should be a way to see all logged in devices (as in google for example): so you can see which devices are authorized
there should be a way to logout all devices / single device, not necessarily the one user is operating at the moment.

pkrzyzaniak · 2017-08-04T11:50:23Z

README.rst

+  {
+      "token": "ads344fdgfd5454yJ0eAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VynRlYW1AYXJhYmVsLmxh",
+      "permanent_token": "gfd5454yJ0eAiOiJKV1QiLCJhbGciOiJ",
+      "device_id": 1


why the need for device_id? permanent_token would not be enough?

This was agreed with @jacoor in the previous pull requests (in https://github.com/ArabellaTech/django-rest-framework-jwt), permanent_token is too fragile.

pkrzyzaniak · 2017-08-04T11:51:57Z

README.rst

+``REST_FRAMEWORK`` configuration in **settings.py**
+
+
+**PermitHeaders middleware**


PermittedHeaders would be a better name I think

Hmm, why not, will change.

poxip · 2017-08-04T12:34:34Z

@pkrzyzaniak Both of those things are implemented. You can list all user's devices (DeviceViewSet), and user can logout each device they are logged in.

coveralls · 2017-08-04T13:35:18Z