python/fastapi-users
1
0
Fork 0
mirror of https://github.com/fastapi-users/fastapi-users.git synced 2025-11-04 06:37:51 +08:00
Code Issues Packages Projects Releases Wiki Activity

Fix #630: relative tokenUrl (#636)

Browse Source 
* Fix #630: use relative tokenUrl as per the official recommendations

* Improve following review comments

* Fix unmatching backtick

* Improve consistency of authentication backend documentation
This commit is contained in:
François Voron
2021-05-20 08:52:03 +02:00
committed by GitHub
parent a690e82408
commit 455f695f52
10 changed files with 33 additions and 33 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
docs/configuration/authentication/cookie.md
View File

@ -16,19 +16,17 @@ cookie_authentication = CookieAuthentication(secret=SECRET, lifetime_seconds=360
auth_backends.append(cookie_authentication)
```
As you can see, instantiation is quite simple. You just have to define a constant `SECRET` which is used to encode the token and the lifetime of the cookie (in seconds).
You can also define the parameters for the generated cookie:
As you can see, instantiation is quite simple. It accepts the following arguments:
* `secret` (`str`): A constant secret which is used to encode the cookie. **Use a strong passphrase and keep it secure.**
* `lifetime_seconds` (`int`): The lifetime of the cookie in seconds.
* `cookie_name` (`fastapiusersauth`): Name of the cookie.
* `cookie_path` (`/`): Cookie path.
* `cookie_domain` (`None`): Cookie domain.
* `cookie_secure` (`True`): Whether to only send the cookie to the server via SSL request.
* `cookie_httponly` (`True`): Whether to prevent access to the cookie via JavaScript.
* `cookie_samesite` (`lax`): A string that specifies the samesite strategy for the cookie. Valid values are 'lax', 'strict' and 'none'. Defaults to 'lax'.
!!! tip
You can also optionally define the `name`. It's useful in the case you wish to have several backends of the same class. Each backend should have a unique name. **Defaults to `cookie`**.
* `cookie_samesite` (`lax`): A string that specifies the samesite strategy for the cookie. Valid values are `lax`, `strict` and `none`. Defaults to `lax`.
* `name` (`Optional[str]`): Name of the backend. It's useful in the case you wish to have several backends of the same class. Each backend should have a unique name. Defaults to `cookie`.
```py
cookie_authentication = CookieAuthentication(

10
docs/configuration/authentication/jwt.md
View File

@ -11,15 +11,17 @@ SECRET = "SECRET"
auth_backends = []
jwt_authentication = JWTAuthentication(secret=SECRET, lifetime_seconds=3600)
jwt_authentication = JWTAuthentication(secret=SECRET, lifetime_seconds=3600, tokenUrl="auth/jwt/login")
auth_backends.append(jwt_authentication)
```
As you can see, instantiation is quite simple. You just have to define a constant `SECRET` which is used to encode the token and the lifetime of token (in seconds).
As you can see, instantiation is quite simple. It accepts the following arguments:
!!! tip
You can also optionally define the `name`. It's useful in the case you wish to have several backends of the same class. Each backend should have a unique name. **Defaults to `jwt`**.
* `secret` (`str`): A constant secret which is used to encode the token. **Use a strong passphrase and keep it secure.**
* `lifetime_seconds` (`int`): The lifetime of the token in seconds.
* `tokenUrl` (`Optional[str]`): The exact path of your login endpoint. It'll allow the interactive documentation to automatically discover it and get a working *Authorize* button. In most cases, you'll probably need a **relative** path, not absolute. You can read more details about this in the [FastAPI documentation](https://fastapi.tiangolo.com/tutorial/security/first-steps/#fastapis-oauth2passwordbearer). Defaults to `auth/jwt/login`.
* `name` (`Optional[str]`): Name of the backend. It's useful in the case you wish to have several backends of the same class. Each backend should have a unique name. Defaults to `jwt`.
```py
jwt_authentication = JWTAuthentication(

2
docs/src/full_mongodb.py
View File

@ -45,7 +45,7 @@ def after_verification_request(user: UserDB, token: str, request: Request):
jwt_authentication = JWTAuthentication(
secret=SECRET, lifetime_seconds=3600, tokenUrl="/auth/jwt/login"
secret=SECRET, lifetime_seconds=3600, tokenUrl="auth/jwt/login"
)
app = FastAPI()

2
docs/src/full_ormar.py
View File

@ -54,7 +54,7 @@ def after_verification_request(user: UserDB, token: str, request: Request):
jwt_authentication = JWTAuthentication(
secret=SECRET, lifetime_seconds=3600, tokenUrl="/auth/jwt/login"
secret=SECRET, lifetime_seconds=3600, tokenUrl="auth/jwt/login"
)
app = FastAPI()

2
docs/src/full_sqlalchemy.py
View File

@ -56,7 +56,7 @@ def after_verification_request(user: UserDB, token: str, request: Request):
jwt_authentication = JWTAuthentication(
secret=SECRET, lifetime_seconds=3600, tokenUrl="/auth/jwt/login"
secret=SECRET, lifetime_seconds=3600, tokenUrl="auth/jwt/login"
)
app = FastAPI()

2
docs/src/full_tortoise.py
View File

@ -54,7 +54,7 @@ def after_verification_request(user: UserDB, token: str, request: Request):
jwt_authentication = JWTAuthentication(
secret=SECRET, lifetime_seconds=3600, tokenUrl="/auth/jwt/login"
secret=SECRET, lifetime_seconds=3600, tokenUrl="auth/jwt/login"
)
fastapi_users = FastAPIUsers(

2
docs/src/oauth_full_mongodb.py
View File

@ -49,7 +49,7 @@ def after_verification_request(user: UserDB, token: str, request: Request):
jwt_authentication = JWTAuthentication(
secret=SECRET, lifetime_seconds=3600, tokenUrl="/auth/jwt/login"
secret=SECRET, lifetime_seconds=3600, tokenUrl="auth/jwt/login"
)
app = FastAPI()

2
docs/src/oauth_full_sqlalchemy.py
View File

@ -69,7 +69,7 @@ def after_verification_request(user: UserDB, token: str, request: Request):
jwt_authentication = JWTAuthentication(
secret=SECRET, lifetime_seconds=3600, tokenUrl="/auth/jwt/login"
secret=SECRET, lifetime_seconds=3600, tokenUrl="auth/jwt/login"
)
app = FastAPI()

2
docs/src/oauth_full_tortoise.py
View File

@ -67,7 +67,7 @@ def after_verification_request(user: UserDB, token: str, request: Request):
jwt_authentication = JWTAuthentication(
secret=SECRET, lifetime_seconds=3600, tokenUrl="/auth/jwt/login"
secret=SECRET, lifetime_seconds=3600, tokenUrl="auth/jwt/login"
)
fastapi_users = FastAPIUsers(

2
fastapi_users/authentication/jwt.py
View File

@ -30,7 +30,7 @@ class JWTAuthentication(BaseAuthentication[str]):
self,
secret: str,
lifetime_seconds: int,
tokenUrl: str = "/login",
tokenUrl: str = "auth/jwt/login",
name: str = "jwt",
):
super().__init__(name, logout=False)