I have been trying to find a related topic but there seems to be none. Please point me to it if it has been suggested before.
In my Django application I have 3 types of login backend. User login backend, admin login backend and api login backend. All persist login attempts on the backend. It is important then to choose the right login backend immediately. To circumvent this problem I had to implement my own authentication method. def authenticate(request=None, **credentials): > """ > If the given credentials are valid, return a User object. > """ > backend = ModelBackend() > backend_path = settings.REST_FRAMEWORK_AUTH_BACKEND > try: > user = _authenticate_with_backend(backend, backend_path, request, > credentials) > except PermissionDenied: > # This backend says to stop in our tracks - this user should not be > allowed in at all. > user_login_failed.send(sender=__name__, > credentials=_clean_credentials(credentials), request=request) > return > if user is None: > user_login_failed.send(sender=__name__, > credentials=_clean_credentials(credentials), request=request) > return > # Annotate the user object with the path of the backend. > user.backend = backend_path > return user > > It's more or less a copy paste of what is in django/contrib/auth/__init__.py What are your thoughts? -- You received this message because you are subscribed to the Google Groups "Django REST framework" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-rest-framework+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/django-rest-framework/0d8ce352-a798-4b77-bc53-67947b82623e%40googlegroups.com.
