habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

core: overwrite user on token creation

Browse Source 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
This commit is contained in:
Jens Langhammer
2021-03-30 22:46:19 +02:00
parent 7a583cb7e6
commit 64fa04306c
7 changed files with 5 additions and 102 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
authentik/core/api/tokens.py
View File

@ -18,7 +18,7 @@ from authentik.events.models import Event, EventAction
class TokenSerializer(ModelSerializer):
"""Token Serializer"""
user = UserSerializer()
user = UserSerializer(required=False)
class Meta:
@ -61,6 +61,9 @@ class TokenViewSet(ModelViewSet):
]
ordering = ["expires"]
def perform_create(self, serializer: TokenSerializer):
serializer.save(user=self.request.user)
@permission_required("authentik_core.view_token_key")
@swagger_auto_schema(responses={200: TokenViewSerializer(many=False)})
@action(detail=True)