Hahan't
Reputation: 487
DRF simple jwt. How to change response from TokenObtainPairView to get an access token EXPIRES time
I wrote in urls:
from rest_framework_simplejwt.views import (
TokenObtainPairView,
TokenRefreshView,
)
urlpatterns = [
...
path('api/token/', TokenObtainPairView.as_view(), name='token_obtain_pair'),
path('api/token/refresh/', TokenRefreshView.as_view(), name='token_refresh'),
...
]
Then when I request api/token/, I got a json response with only access and refresh tokens.
But I need to get also an access token expires time for saving it to localStorage and request to the refresh url, save the new access token in the storage if the time was expired
Upvotes: 5
Views: 7820
Answers (1)
Roham
Reputation: 2110
I had the same problem. One way to solve this problem is to have new serializers for access and refresh APIs, like:
from rest_framework_simplejwt.serializers import TokenObtainPairSerializer, TokenRefreshSerializer
from rest_framework_simplejwt.tokens import RefreshToken
class TokenObtainLifetimeSerializer(TokenObtainPairSerializer):
def validate(self, attrs):
data = super().validate(attrs)
refresh = self.get_token(self.user)
data['lifetime'] = int(refresh.access_token.lifetime.total_seconds())
return data
class TokenRefreshLifetimeSerializer(TokenRefreshSerializer):
def validate(self, attrs):
data = super().validate(attrs)
refresh = RefreshToken(attrs['refresh'])
data['lifetime'] = int(refresh.access_token.lifetime.total_seconds())
return data
And also add new views for that as well like:
from rest_framework_simplejwt.views import TokenViewBase
from accounts.api.serializers import TokenObtainLifetimeSerializer, TokenRefreshLifetimeSerializer
class TokenObtainPairView(TokenViewBase):
"""
Return JWT tokens (access and refresh) for specific user based on username and password.
"""
serializer_class = TokenObtainLifetimeSerializer
class TokenRefreshView(TokenViewBase):
"""
Renew tokens (access and refresh) with new expire time based on specific user's access token.
"""
serializer_class = TokenRefreshLifetimeSerializer
and finally add new views to your urls like:
from django.urls import path
from accounts.api.views import TokenObtainPairView, TokenRefreshView
urlpatterns = [
path('token/obtain/', TokenObtainPairView.as_view(), name='token-obtain'),
path('token/refresh/', TokenRefreshView.as_view(), name='token-refresh'),
]
Now despite of those tokens of yours, you also have expire times in both of your APIs.
Upvotes: 7
Related Questions
- How to set token expiration time when using django-rest-authtoken?
- Expired access token accepted and return the data from view in django
- How do I use the Django rest framework to prolong a JWT session token?
- How to set a token that does not expire
- Set expiration time to sample django jwt token
- expire JWT token if new JWT token id generated
- Django rest_framework_simplejwt token expiring too fast
- Django Rest Framework JWT: How to change the token expiration time when logged in
- Modifying jwt access token expiry time in django using simplejwt module
- JWT Token expiration time increase