Skip to content

middleware

JwtAuthMiddleware

Bases: BaseMiddleware

Source code in users/middleware.py 
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
class JwtAuthMiddleware(BaseMiddleware):
    def __init__(self, inner):
        self.inner = inner

    async def __call__(self, scope, receive, send):
        # Close old database connections to prevent usage of timed out connections
        close_old_connections()

        # Get the token
        token = parse_qs(scope["query_string"].decode("utf8"))["token"][0]

        # Try to authenticate the user
        try:
            # This will automatically validate the token and raise an error if token is invalid
            UntypedToken(token)
        except (InvalidToken, TokenError) as e:
            # Token is invalid
            print(e)
            return None
        else:
            #  Then token is valid, decode it
            decoded_data = jwt_decode(token, settings.SECRET_KEY, algorithms=["HS256"])

            # Get the user using ID
            scope["user"] = await get_user(validated_token=decoded_data)
        return await super().__call__(scope, receive, send)

inner = inner instance-attribute

__call__(scope, receive, send) async

Source code in users/middleware.py 
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
async def __call__(self, scope, receive, send):
    # Close old database connections to prevent usage of timed out connections
    close_old_connections()

    # Get the token
    token = parse_qs(scope["query_string"].decode("utf8"))["token"][0]

    # Try to authenticate the user
    try:
        # This will automatically validate the token and raise an error if token is invalid
        UntypedToken(token)
    except (InvalidToken, TokenError) as e:
        # Token is invalid
        print(e)
        return None
    else:
        #  Then token is valid, decode it
        decoded_data = jwt_decode(token, settings.SECRET_KEY, algorithms=["HS256"])

        # Get the user using ID
        scope["user"] = await get_user(validated_token=decoded_data)
    return await super().__call__(scope, receive, send)

__init__(inner)

Source code in users/middleware.py 
26
27
def __init__(self, inner):
    self.inner = inner

JwtAuthMiddlewareStack(inner)

Source code in users/middleware.py 
53
54
def JwtAuthMiddlewareStack(inner):
    return JwtAuthMiddleware(AuthMiddlewareStack(inner))

get_user(validated_token)

Source code in users/middleware.py 
15
16
17
18
19
20
21
22
@database_sync_to_async
def get_user(validated_token):
    try:
        user = get_user_model().objects.get(id=validated_token["user_id"])
        return user

    except User.DoesNotExist:
        return AnonymousUser()