add multiple API tokens per user, removes old API tokens

2022-08-04 17:24:54 +02:00
parent 9e62d8a3a3
commit 3f77b73a61
12 changed files with 666 additions and 220 deletions
--- a/cookbook/views/api.py
+++ b/cookbook/views/api.py
@ -29,6 +29,7 @@ from django.utils.translation import gettext as _
 from django_scopes import scopes_disabled
 from icalendar import Calendar, Event
 from PIL import UnidentifiedImageError
+from oauth2_provider.models import AccessToken
 from recipe_scrapers import scrape_html, scrape_me
 from recipe_scrapers._exceptions import NoSchemaFoundInWildMode
 from requests.exceptions import MissingSchema
@ -86,7 +87,7 @@ from cookbook.serializer import (AutomationSerializer, BookmarkletImportListSeri
                                 SupermarketCategorySerializer, SupermarketSerializer,
                                 SyncLogSerializer, SyncSerializer, UnitSerializer,
                                 UserFileSerializer, UserSerializer, UserPreferenceSerializer,
-                                 UserSpaceSerializer, ViewLogSerializer)
+                                 UserSpaceSerializer, ViewLogSerializer, AccessTokenSerializer)
 from cookbook.views.import_export import get_integration
 from recipes import settings

@ -1090,6 +1091,15 @@ class CustomFilterViewSet(viewsets.ModelViewSet, StandardFilterMixin):
        return super().get_queryset()


+class AccessTokenViewSet(viewsets.ModelViewSet):
+    queryset = AccessToken.objects
+    serializer_class = AccessTokenSerializer
+    permission_classes = [CustomIsOwner]
+
+    def get_queryset(self):
+        return self.queryset.filter(user=self.request.user)
+
+
 # -------------- DRF custom views --------------------

 class AuthTokenThrottle(AnonRateThrottle):