Update settings for authentication

2018-03-28 14:48:58 +02:00 · 2018-03-28 14:48:58 +02:00 · 44ffe4577f
commit 44ffe4577f
parent 4b35667623
1 changed files with 21 additions and 12 deletions
--- a/ofu_app/core/settings.py
+++ b/ofu_app/core/settings.py
@ -11,6 +11,7 @@ https://docs.djangoproject.com/en/1.11/ref/settings/
 """

 import os
+import datetime

 # Build paths inside the project like this: os.path.join(BASE_DIR, ...)
 BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))
@ -41,7 +42,9 @@ INSTALLED_APPS = [
    'apps.donar',
    'apps.registration',
    'rest_framework',
+    'rest_framework.authtoken',
    'analytical',
+    'corsheaders',
 ]

 SITE_ID = 1
@ -49,9 +52,11 @@ SITE_ID = 1
 REST_FRAMEWORK = {
    'DEFAULT_PERMISSION_CLASSES': [
        'rest_framework.permissions.IsAuthenticated',
+        'rest_framework.authentication.TokenAuthentication'
    ],
 }
 MIDDLEWARE = [
+    'corsheaders.middleware.CorsMiddleware',
    'django.middleware.security.SecurityMiddleware',
    'django.contrib.sessions.middleware.SessionMiddleware',
    'django.middleware.common.CommonMiddleware',
@ -61,6 +66,17 @@ MIDDLEWARE = [
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
 ]

+MIDDLEWARE_CLASSES = (
+    'django.middleware.security.SecurityMiddleware',
+    'django.contrib.sessions.middleware.SessionMiddleware',
+    'django.middleware.common.CommonMiddleware',
+    'django.middleware.csrf.CsrfViewMiddleware',
+    'django.contrib.auth.middleware.AuthenticationMiddleware',
+    'django.contrib.auth.middleware.SessionAuthenticationMiddleware',
+    'django.contrib.messages.middleware.MessageMiddleware',
+    'django.middleware.clickjacking.XFrameOptionsMiddleware',
+)
+
 ROOT_URLCONF = 'core.urls'
 TEMPLATES = [
    {
@ -126,17 +142,6 @@ AUTH_PASSWORD_VALIDATORS = [
    },
 ]

-MIDDLEWARE_CLASSES = (
-    'django.middleware.security.SecurityMiddleware',
-    'django.contrib.sessions.middleware.SessionMiddleware',
-    'django.middleware.common.CommonMiddleware',
-    'django.middleware.csrf.CsrfViewMiddleware',
-    'django.contrib.auth.middleware.AuthenticationMiddleware',
-    'django.contrib.auth.middleware.SessionAuthenticationMiddleware',
-    'django.contrib.messages.middleware.MessageMiddleware',
-    'django.middleware.clickjacking.XFrameOptionsMiddleware',
-)
-
 # Internationalization
 # https://docs.djangoproject.com/en/1.11/topics/i18n/

@ -159,7 +164,6 @@ TIME_FORMAT = "H:i"

 STATIC_URL = '/static/'
 STATIC_ROOT = os.path.join(BASE_DIR, "static_files")
-print(STATIC_ROOT)
 STATICFILES_DIRS = [
    os.path.join(BASE_DIR, "static"),
 ]
@ -223,3 +227,8 @@ LOGGING = {
 }

 ADMINS = [('Michael Götz', 'mgoetz1995@gmail.com')]
+CORS_ORIGIN_ALLOW_ALL = False
+
+CORS_ORIGIN_WHITELIST = (
+    'localhost:3000',
+)