Source code for jwt_allauth.login.views
from django.conf import settings
from rest_framework import status
from rest_framework.request import Request
from rest_framework.response import Response
from rest_framework_simplejwt.exceptions import TokenError, InvalidToken
from rest_framework_simplejwt.views import TokenObtainPairView
from rest_framework.throttling import AnonRateThrottle
from jwt_allauth.app_settings import LoginSerializer
from jwt_allauth.utils import get_user_agent, sensitive_post_parameters_m, build_token_response
from jwt_allauth.constants import REFRESH_TOKEN_COOKIE
[docs]
class LoginView(TokenObtainPairView):
serializer_class = LoginSerializer
throttle_classes = [AnonRateThrottle]
[docs]
@sensitive_post_parameters_m
def dispatch(self, *args, **kwargs):
return super(LoginView, self).dispatch(*args, **kwargs)
@get_user_agent
def post(self, request: Request, *args, **kwargs) -> Response:
# Authenticate and generate the tokens
serializer = self.get_serializer(data=request.data)
try:
serializer.is_valid(raise_exception=True)
except TokenError as e:
raise InvalidToken(e.args[0])
# MFA setup required branch (REQUIRED mode without MFA configured)
if serializer.validated_data.get('mfa_setup_required'):
return Response(
{
"mfa_setup_required": True,
"setup_challenge_id": serializer.validated_data.get("setup_challenge_id"),
},
status=status.HTTP_200_OK,
)
# MFA verification required branch (user has MFA enabled)
if serializer.validated_data.get('mfa_required'):
return Response(
{
"mfa_required": True,
"challenge_id": serializer.validated_data.get("challenge_id"),
},
status=status.HTTP_200_OK,
)
return build_token_response(
refresh_token=serializer.validated_data['refresh'],
access_token=serializer.validated_data['access']
)