blocks/authAPI/serializers.py


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51

from django.contrib.auth import authenticate, get_user_model
from rest_framework import serializers

from djoser.conf import settings

User = get_user_model()


class UserCreateSerializer(serializers.ModelSerializer):
    class Meta:
        model = User
        fields = ("id", "username", "email", "password")


class TokenCreateSerializer(serializers.Serializer):
    password = serializers.CharField(required=False,
                                     style={"input_type": "password"})

    default_error_messages = {
        "invalid_credentials": "Incorrect username or password",
        "inactive_account": """Your account is not activated.
                               Please click on the activation link
                               sent by email.""",
    }

    def __init__(self, *args, **kwargs):
        super().__init__(*args, **kwargs)
        self.user = None
        self.fields[settings.LOGIN_FIELD] = serializers.CharField()

    def validate(self, attrs):
        password = attrs.get("password")
        params = {settings.LOGIN_FIELD: attrs.get(settings.LOGIN_FIELD)}
        self.user = authenticate(
            request=self.context.get("request"), **params, password=password
        )
        if not self.user:
            self.user = User.objects.filter(**params).first()
            if self.user and not self.user.is_active:
                self.fail("inactive_account")

            if self.user and not self.user.check_password(password):
                self.fail("invalid_credentials")

        if self.user and self.user.is_active:
            return attrs

        if self.user and (not self.user.is_active):
            self.fail("inactive_account")

        self.fail("invalid_credentials")