Source code for oscarapi.serializers.login

from django.contrib.auth import get_user_model, authenticate
from rest_framework import serializers

from oscarapi.utils import overridable

User = get_user_model()

def field_length(fieldname):
    field = next(
        field for field in User._meta.fields if == fieldname)
    return field.max_length

[docs]class UserSerializer(serializers.ModelSerializer): class Meta: model = User fields = overridable('OSCARAPI_USER_FIELDS', ( User.USERNAME_FIELD, 'id', 'date_joined',))
class LoginSerializer(serializers.Serializer): username = serializers.CharField( max_length=field_length(User.USERNAME_FIELD), required=True) password = serializers.CharField( max_length=field_length('password'), required=True) def validate(self, attrs): user = authenticate( username=attrs['username'], password=attrs['password']) if user is None: raise serializers.ValidationError('invalid login') elif not user.is_active: raise serializers.ValidationError( 'Can not log in as inactive user') elif user.is_staff and overridable( 'OSCARAPI_BLOCK_ADMIN_API_ACCESS', True): raise serializers.ValidationError( 'Staff users can not log in via the rest api') # set instance to the user so we can use this in the view self.instance = user return attrs