novaburst/funquail
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Fix oauth to respond with unhashed token on creation

Browse source
This commit is contained in:
Georg Krause 2022-11-08 19:37:05 +00:00 committed by JuniorJPDJ
commit 515b502364
3 changed files with 19 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
api/funkwhale_api/users/oauth/serializers.py
View file

@ -32,7 +32,7 @@ class CreateApplicationSerializer(serializers.ModelSerializer):
"updated",
"redirect_uris",
]
read_only_fields = ["client_id", "client_secret", "created", "updated"]
read_only_fields = ["client_id", "created", "updated"]
def to_representation(self, obj):
repr = super().to_representation(obj)

16
api/funkwhale_api/users/oauth/views.py
View file

@ -1,5 +1,6 @@
import json
import urllib.parse
import secrets
from django import http
from django.utils import timezone
@ -49,6 +50,21 @@ class ApplicationViewSet(
}
}
def create(self, request, *args, **kwargs):
request_data = request.data.copy()
try:
secret = request_data["client_secret"]
except KeyError:
secret = secrets.token_hex(64)
request_data["client_secret"] = secret
serializer = self.get_serializer(data=request_data)
serializer.is_valid(raise_exception=True)
self.perform_create(serializer)
headers = self.get_success_headers(serializer.data)
data = serializer.data
data["client_secret"] = secret
return response.Response(data, status=201, headers=headers)
def get_serializer_class(self):
if self.request.method.lower() == "post":
return serializers.CreateApplicationSerializer