Django休息框架，JWT和request.session [英] Django rest framework, JWT and request.session

问题描述

我使用Django休息框架与JWT进行身份验证，并且一切正常工作BUT ...
我需要在登录时在会话var中保存有关用户的信息，我真的不知道我可以在哪里请求.session ['mydata'] = plop

我试过：

  def jwt_response_payload_handler（token，user = None，request = None）：
 serializedUser = UserSerializer（user）.data 
 request.session ['mydata'] = serializedUser.mydata 
 return {
'token'：token，
'user'：serializedUser 
} 
  

但是它不工作...

任何想法？

解决方案

request.session 通过 Django的会话框架，它需要使用会话cookie，是什么权力 SessionAuthentication 。

JW T与会话认证完全分离，并且不提供在令牌上存储任意数据的方法。

I use Django rest framework with JWT for authentication and everything works perfectly BUT... I need to save an information about the user in a session var at login and I really don't know where I can do the request.session['mydata'] = plop

I tried :

def jwt_response_payload_handler(token, user=None, request=None):
  serializedUser = UserSerializer(user).data
  request.session['mydata'] = serializedUser.mydata
  return {
    'token': token,
    'user': serializedUser
  }

But it doesn't work...

Any idea ?

解决方案

request.session is managed through Django's session framework which requires the use of session cookies and is what powers SessionAuthentication.

JWT is completely separate from session authentication, and does not provide a way to store arbitrary data on the token.

这篇关于Django休息框架，JWT和request.session的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！