Skip to content

access-ci-org/cilogon-tokenauth

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 

Repository files navigation

cilogon-tokenauth is a package that implements the Django Rest Framework TokenAuthentication, using CILogon.

One can submit an API request with an "Authentication: Bearer " line in the header, and the cilogon-tokenauth package will introspect the bearer token with CILogon, match it to a SocialAccount user by the "sub" value from the CILogon userinfo endpoint (or create a user if one does not already exist).

So as not to overtax the CILogon introspection endpoint, should many API requests come through at the same time, the token's introspection information is cached for a settable amount of time. Set the value in seconds in settings.py as TOKENAUTH_INTROSPECTION_CACHE_EXPIRATION.

You must register a CILogon OIDC client at registry.access-ci.org. Your values for Client ID and Secret must then be put in settings as CLIENT_KEY and CLIENT_SECRET

Settings: CLIENT_KEY CLIENT_SECRET TOKENAUTH_INTROSPECTION_CACHE_EXPIRATION

About

Use CILogon OIDC bearer tokens in Django DRF

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages