Use different JWT package

[ferndot]

For all intents and purposes, django-rest-framework-jwt has been abandoned and is no longer receiving updates (jpadilla/django-rest-framework-jwt#449). It is a good time for djoser to consider another package for JWT authentication.

One that I found:

• https://github.com/davesque/django-rest-framework-simplejwt

[dekoza]

I'm considering removing JWT altogether. See this discussion.

Anyway, since a lot of people do like JWT, I'll refactor the code to use some new library. Thanks for pointing that.

[ferndot]

@dekoza if you haven't started work on this, I can take a quick stab at it. (Already patched this on two of my projects using djoser)

[dekoza]

@joshua-s please do. I have loads of work to do before I can work on this. Thanks!

[ferndot]

Sounds great! Thanks!

[ksitko]

Has a decision been made in regards to either deprecating or making a new version to use simplejwt? Or has it been decided to eliminate JWT entirely?

[ferndot]

@ksitko I am waiting for a review on my PR #305.

Ultimately, it might be good to define a standard interface for auth systems and then split JWT and Token auth out into separate packages. This will make us much more flexible.