feat: api, legacy wip: Move authentication to django api

[togir2]

Description

I added a login and password reset pages to Django.
There are now the Following new Endpoints:

• /api/v2/authentication/{login, logout}
• /api/v2/authentication/{password-reset, password-reset-confirm, password-reset-complete}

I also added an email section to the configuration file

Todo:

• Redirect GET "/login" to " /api/v2/authentication/login"
• Show a message on login page if the login did succeed
• Add JWT endpoint so that api only clients can use a token
• Update docs for email settings
• Update docs for password reset
• Add tests for the email config
• Add e2e test for the login
• Add e2e tests for the password reset

Links

#1788

[codecov]

Codecov Report

Merging #2428 (662fbd1) into main (be3964c) will increase coverage by 3.31%.
The diff coverage is 100.00%.

@@            Coverage Diff             @@
##             main    #2428      +/-   ##
==========================================
+ Coverage   58.60%   61.91%   +3.31%     
==========================================
  Files         146      145       -1     
  Lines        4343     4122     -221     
==========================================
+ Hits         2545     2552       +7     
+ Misses       1798     1570     -228     

Flag	Coverage Δ
analyzer	47.33% <ø> (ø)
api-client	40.99% <ø> (ø)
playout	30.01% <ø> (+4.21%)	⬆️
shared	88.45% <100.00%> (+0.21%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
api/libretime_api/core/models/user.py	83.95% <ø> (ø)
api/libretime_api/settings/_internal.py	95.83% <ø> (ø)
api/libretime_api/settings/_schema.py	100.00% <ø> (ø)
api/libretime_api/settings/prod.py	100.00% <ø> (ø)
api/libretime_api/urls.py	100.00% <ø> (ø)
shared/libretime_shared/config/__init__.py	100.00% <ø> (ø)
shared/libretime_shared/config/_models.py	96.22% <100.00%> (+0.17%)	⬆️
...out/libretime_playout/liquidsoap/client/_client.py	32.94% <0.00%> (-0.80%)	⬇️
...out/libretime_playout/player/liquidsoap_gateway.py	43.61% <0.00%> (-0.47%)	⬇️
playout/libretime_playout/main.py	0.00% <0.00%> (ø)
... and 10 more

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

[jooola]

Hey @togir2,
I really appreciate the energy, but could we talk about some implementation details before you put too much energy in this ?

Maybe @paddatrapper will be able to guide this week, I'll be afk.

I didnt make a full review, but it seem you added some django views, which we don't want. The Api is meant to be headless. In the future we want to add a Vue based webapp that will talk to the api.

We want to slowly transfom the frontend with parts of the new UI and not do a full rewrite. See the issue tracker, this has been discussed already.

In addition I would like to weight the pros and cons about the sessions vs JWT, I would hate to break things because we didnt thought this trough.

[togir2]

Sorry for the noise with the merge request.

[...] but could we talk about some implementation details before you put too much energy in this ?

Oh yes absolutely!
I did not intended this to be a final solution / to be merged. I intended it (for me) to be a test if:

• forwarding the auth-data to the legacy would work
• what needs to be added to the api to support authentication

I though as I did the testing for me anyway I would share it with you all, maybe it would help finding a decision, or provide a concrete example to discuss.

Sorry if that did sends the wrong signal...
And sorry for the noise...

If will close this PR, as I'm sure this will not be the final solution and for discussion there is already the Issue #1788

[jooola]

It wasn't clear before your comment, but now that you cleared that up, feel free to keep the PR open for experimenting. And no worries, the noise does not bother.