Probindo/mypertamina-microsite-api
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

auth sso

Browse Source
This commit is contained in:
Irwan Cahyono 2026-02-27 10:21:39 +07:00
parent 1bf515ae76
commit 82e2a23972
10 changed files with 109 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
microsite_api/microsite_api/urls.py
View File

@ -21,9 +21,11 @@ from rest_framework_simplejwt.views import TokenObtainPairView, TokenRefreshView
urlpatterns = [
path('admin/', admin.site.urls),
path('api/token/', TokenObtainPairView.as_view(), name='token_obtain_pair'),
path('api/token/refresh/', TokenRefreshView.as_view(), name='token_refresh'),
path('api/token/verify/', TokenVerifyView.as_view(), name='token_verify'),
path('token/', TokenObtainPairView.as_view(), name='token_obtain_pair'),
path('token/refresh/', TokenRefreshView.as_view(), name='token_refresh'),
path('token/verify/', TokenVerifyView.as_view(), name='token_verify'),
path('auth/', include('user_auth.urls')),
path('profile/', include('user_profile.urls')),
path('location/', include('location.urls')),

0
microsite_api/user_auth/__init__.py Normal file
View File

3
microsite_api/user_auth/admin.py Normal file
View File

@ -0,0 +1,3 @@
from django.contrib import admin
# Register your models here.

5
microsite_api/user_auth/apps.py Normal file
View File

@ -0,0 +1,5 @@
from django.apps import AppConfig
class UserAuthConfig(AppConfig):
name = 'user_auth'

0
microsite_api/user_auth/migrations/__init__.py Normal file
View File

3
microsite_api/user_auth/models.py Normal file
View File

@ -0,0 +1,3 @@
from django.db import models
# Create your models here.

5
microsite_api/user_auth/serializers.py Normal file
View File

@ -0,0 +1,5 @@
from rest_framework import serializers
class SSOLoginSerializer(serializers.Serializer):
username = serializers.CharField()
password = serializers.CharField(write_only=True)

3
microsite_api/user_auth/tests.py Normal file
View File

@ -0,0 +1,3 @@
from django.test import TestCase
# Create your tests here.

9
microsite_api/user_auth/urls.py Normal file
View File

@ -0,0 +1,9 @@
from django.urls import path
from rest_framework.urlpatterns import format_suffix_patterns
from user_auth import views
urlpatterns = [
path('token/', views.SSOLoginView.as_view()),
]
urlpatterns = format_suffix_patterns(urlpatterns)

76
microsite_api/user_auth/views.py Normal file
View File

@ -0,0 +1,76 @@
# views.py
import requests
from rest_framework.views import APIView
from rest_framework.response import Response
from rest_framework import status
from django.contrib.auth import get_user_model
from rest_framework_simplejwt.tokens import RefreshToken
from .serializers import SSOLoginSerializer
User = get_user_model()
class SSOLoginView(APIView):
permission_classes = []
def post(self, request):
serializer = SSOLoginSerializer(data=request.data)
serializer.is_valid(raise_exception=True)
username = serializer.validated_data["username"]
password = serializer.validated_data["password"]
# Call SSO
sso_response = requests.post(
"http://127.0.0.1:8080/auth/jwt/create/",
json={
"username": username,
"password": password
},
timeout=5
)
if sso_response.status_code != 200:
return Response(
{"detail": "Invalid credentials"},
status=status.HTTP_401_UNAUTHORIZED
)
sso_data = sso_response.json()
sso_token = sso_data.get("access")
sso_refresh = sso_data.get("refresh")
sso_response_user = requests.get(
"http://127.0.0.1:8080/auth/users/me/",
headers={"Authorization": f"JWT {sso_token}"},
timeout=5
)
if (sso_response_user.status_code != 200):
return Response(
{"detail": "Failed to fetch user data from SSO"},
status=status.HTTP_500_INTERNAL_SERVER_ERROR
)
sso_user = sso_response_user.json()
# Sync user lokal (optional)
user, created = User.objects.get_or_create(
username=username,
defaults={
"email": sso_user.get("email", "")
}
)
# Generate JWT lokal
refresh = RefreshToken.for_user(user)
return Response({
"refresh": str(refresh),
"access": str(refresh.access_token),
"user": {
"id": user.id,
"username": user.username,
"email": user.email,
}
})