Hi, 

 

Can anybody explain, why TokenAuthentication.authenticate_credentials 
method raises an AuthenticationFailed exception?   

Seems, since it is an authentication method, it shouldn’t allow or disallow 
an incoming request. 

On practice, user can have invalid token in cookies, but he/she still 
should have access to AllowAny pages, for example. 


Thanks for any thoughts

-- 
You received this message because you are subscribed to the Google Groups 
"Django REST framework" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
For more options, visit https://groups.google.com/d/optout.

Reply via email to