Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Adding claims to DRF simple JWT payload

Tags:

python

django

jwt

django-rest-framework

django-rest-framework-simplejwt

Using djangorestframework_simplejwt library, when POST to a custom view

#urls.py
path('api/token/', MyTokenObtainPairView.as_view(), name='token_obtain'),

#views.py
class MyTokenObtainPairView(TokenObtainPairView):
    serializer_class = MyTokenObtainPairSerializer

I'm able to get a the following access token

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJ0b2tlbl90eXBlIjoiYWNjZXNzIiwiZXhwIjoxNTkwOTEwNjg0LCJqdGkiOiI3M2MxYmZkOWNmMGY0ZjI3OTY4MGY0ZjhlYjA1NDQ5NyIsInVzZXJfaWQiOjExfQ.5vs0LmNGseU6rtq3vuQyApupxhQM3FBAoKAq8MUukIBOOYfDAV9guuCVEYDoGgK6rdPSIq2mvcSxkILG8OH5LQ

By going to https://jwt.io/ I can see the payload is currently

{
  "token_type": "access",
  "exp": 1590910684,
  "jti": "73c1bfd9cf0f4f279680f4f8eb054497",
  "user_id": 11
}

JWT

So, we can see that the second part of the token is the payload - containing the claims.

I've explored how to add more information to the Response body and now would like to know how to customize the Payload data by adding iat claim, username and today's date.

like image 302
Tiago Martins Peres Avatar asked May 31 '20 08:05

Tiago Martins Peres

1 Answers

As you already created a subclass for the desired view (MyTokenObtainPairView) and a subclass for its corresponding serializer (MyTokenObtainPairSerializer), add the following to the serializer

class MyTokenObtainPairSerializer(TokenObtainPairSerializer):

    ...

    @classmethod
    def get_token(cls, user):
        token = super().get_token(user)

        # Add custom claims
        token['iat'] = datetime.datetime.now()
        token['user'] = user.username
        token['date'] = str(datetime.date.today())

        return token

Then, when you POST to that same location, you'll get an access token like this

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJ0b2tlbl90eXBlIjoiYWNjZXNzIiwiZXhwIjoxNTkwOTE0MTk4LCJqdGkiOiJhZDZmNzZhZjFmOGU0ZWJlOGI2Y2Y5YjQ4MGQzZjY2MiIsInVzZXJfaWQiOjExLCJpYXQiOjE1OTA5MTc0OTgsInVzZXIiOiJ0aWFnbyIsImRhdGUiOiIyMDIwLTA1LTMxIn0.-5U9P-WWmhlOenzCvc6b7_71Tz17LyNxe_DOMwwqH4RqrNsilVukEcZWFRGupLHRZjIvPya2QJGpiju9ujzQuw

Using JWT you can see the Payload changing accordingly

Custom Payload simpleJWT Django

{
  "token_type": "access",
  "exp": 1590914198,
  "jti": "ad6f76af1f8e4ebe8b6cf9b480d3f662",
  "user_id": 11,
  "iat": 1590917498,
  "user": "tiago",
  "date": "2020-05-31"
}
like image 104
Tiago Martins Peres Avatar answered Oct 13 '22 00:10

Tiago Martins Peres
Sign in to Comment

Related questions

Overfitting and data leakage in tensorflow/keras neural network
Sending messages in the on_ready? Python discord bot
pinging ~ 100,000 servers, is multithreading or multiprocessing better?
How to conditionally drop rows in pandas
How to change the time of a Pandas datetime column to midnight?
AttributeError: 'NoneType' object has no attribute 'time' paramiko
How to download a file from Google Drive using Python and the Drive API v3
SignatureDoesNotMatch - Boto3 Django-storages
Anaconda won't update spyder 4
pytorch conv2d value cannot be converted to type uint8_t without overflow
How to get the latest release version in Github only use python-requests?
Most pythonic way to provide defaults for class constructor
Explosion in loss function, LSTM autoencoder
Tensorflow 2.0: Cannot Import tf.keras.utils.conv_utils
ModuleNotFoundError: No module named 'tf'
No module named 'sklearn.svm._classes' when loading model from colab
Fastest Way To Filter A Pandas Dataframe Using A List
How to convert selected column with index to a list of tuples in pandas
Jupyter Notebook : 'head' is not recognized as an internal or external command, operable program or batch file
Get a decision tree in a dictionary

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!