Skip to content

Commit

Permalink
API Key Creation & Management
Browse files Browse the repository at this point in the history 
Added functionality for superusers and users to create and manage API keys, with Knox integration for secure key hashing.
  • Loading branch information
NEZRI Ygal authored and NEZRI Ygal committed Jul 22, 2024
1 parent b1403ce commit 6f8c71c
Showing 1 changed file with 5 additions and 26 deletions.
31 changes: 5 additions & 26 deletions Watcher/Watcher/accounts/admin.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -82,7 +82,6 @@ class LogEntryAdmin(admin.ModelAdmin):
UserFilter,
ActionFilter,
'content_type',
# 'user',
]

search_fields = [
Expand Down Expand Up @@ -132,19 +131,12 @@ def action_description(self, obj):

action_description.short_description = 'Action'


admin.site.register(LogEntry, LogEntryAdmin)


class APIKeyForm(forms.ModelForm):
EXPIRATION_CHOICES = (
(1, '1 day'),
(7, '7 days'),
(30, '30 days'),
(60, '60 days'),
(90, '90 days'),
(365, '1 year'),
(730, '2 years'),
(1, '1 day'), (7, '7 days'), (30, '30 days'), (60, '60 days'), (90, '90 days'), (365, '1 year'), (730, '2 years'),
)
expiration = forms.ChoiceField(choices=EXPIRATION_CHOICES, label='Expiration', required=True)
user = forms.ModelChoiceField(queryset=User.objects.all(), label='User', required=True)
Expand Down Expand Up @@ -281,11 +273,9 @@ def get_exclude(self, request, obj=None):
return ['key']

def has_view_permission(self, request, obj=None):
if request.user.is_superuser:
return True
if obj is None:
return True
return obj.user == request.user
if obj and not request.user.is_superuser:
return obj.auth_token.user == request.user
return super().has_view_permission(request, obj)

def key_details(self, obj):
if obj.auth_token:
Expand All @@ -306,15 +296,4 @@ def delete_authtoken_when_apikey_deleted(sender, instance, **kwargs):
if instance.auth_token:
instance.auth_token.delete()
except AuthToken.DoesNotExist:
pass


class AuthTokenAdmin(admin.ModelAdmin):
list_display = ('user', 'digest', 'created', 'expiry')
readonly_fields = ('user', 'digest', 'created', 'expiry')

def has_add_permission(self, request):
return False

admin.site.unregister(AuthToken)
admin.site.register(AuthToken, AuthTokenAdmin)
pass

0 comments on commit 6f8c71c

Please sign in to comment.