Closed Bug 1210889 Opened 10 years ago Closed 10 years ago

Prepare DRF JWT auth for the API

Categories

(addons.mozilla.org Graveyard :: API, defect)

Product:
addons.mozilla.org Graveyard
Component:
API
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: kumar, Assigned: kumar)

References

Details

Per the proposal in https://mail.mozilla.org/pipermail/dev-addons/2015-October/000010.html this is to set up JWT token auth for DRF. We can probably use http://getblimp.github.io/django-rest-framework-jwt/ but I think it will require some customization. For example: we'll want per-user secret keys not a global secret key.
Assignee: nobody → kumar.mcmillan
Blocks: 1206158, 1209229
No longer blocks: 1206158
Iteration: --- → 44.2 - Oct 19
Commits pushed to master at https://github.com/mozilla/olympia https://github.com/mozilla/olympia/commit/b96f7703d96d571540419f7c268810bf7d99f39e JWT token auth for signing API (bug 1210889) https://github.com/mozilla/olympia/commit/aa68481a97b8a5e15e674583ee1653e70445b0f3 Merge pull request #808 from kumar303/jwt-auth JWT token auth for signing API (bug 1210889)
PR: https://github.com/mozilla/olympia/pull/808 We still need nonces: bug 1213354
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
Product: addons.mozilla.org → addons.mozilla.org Graveyard
You need to log in before you can comment on or make changes to this bug.