man you are the best, straight to the point, no copy pasting, and very easy and readable code and step by step process, something that lots of tutorials struggle with, thank you so much.
Watching this today, although this is 3 years ago and there is an optimized way to use JWT, this really helped me understand what happens during a JWT authentication. Kudos
I think this cannot be used on a app. Right? Mobile app cannot access cookies. I am developing in flutter. Does the method shows in this video can be done using cookies?
Thanks a lot man, I had a hard time until I saw this one. The explanations were on point as well, cors even fixed a front-end problem my team had. Hope you grow big!
very well explained....loved this. Yeah, some exceptions are that, the person has to make a create_superuser function to create a superuser but its fine. JWT explained wonderfully
Man you don't know how much I appreciate this video, let me tell you I've been looking for something like this for weeks, let me tell you there's nothing.
Hi, great video! One question: At @26:12, why did you decode the token? I get the error "'str' object has no attribute 'decode'" If I drop the decoded I get a decoded string.
Awesome tutorial dude! One question: at 21:08 when you are fetching the user from the db, why do you do a filter and then a first instead of simply a get()? Thanks!
filter(), whenever you expect more than just one object that matches your criteria. If no item was found matching your criteria, filter() returns am empty queryset without throwing an error. get(), you expect one (and only one) item that matches your criteria. Thus if there are more than one objects returned in queryset we would know that via filter
Great tutorial my brother! The cookies aren't saving automatically when I use ReactJs - Axios. How can I save the cookies automatically and also send it as part of the request using Axios or Fetch API
The cookies aren't saving automatically when I use ReactJs - Axios. How can I save the cookies automatically and also send it as part of the request using Axios or Fetch API
In May 2023, I had to change this: payload = jwt.decode(token, key='secret', algorithm=["HS256"]) to this: payload = jwt.decode(token, key='secret', algorithms=["HS256"])
Hey, I did this auth and now connecting it to Vue js frontend but when I sign out, I am still able to access protected views that need authentications. Only when I clear the browser cookie do the access stop. Also the cookie is still within the header when I sign out. How can I fix this? it work fine in postman.
Can PyJWT and Simple JWT be used for a django project? Also when the data from the frontend gets to the backend, django raises an error with the email. Thank you for your attention
thanks for high quality video, but i have a question for you~~ in the Userview part,, why you attech code -> ".first()" ?? when I want all of the logined people, how can i???
Because filter() returns a List and I add .first() to retrieve a single object. To get all the logged in users you have to store the jwt with the user_id in a database
![Django Rest Framework Authentication 🔒 ✅ Scalable Auth in 27 minutes [2023]](http://i.ytimg.com/vi/llrIu4Qsl7c/mqdefault.jpg)
man you are the best, straight to the point, no copy pasting, and very easy and readable code and step by step process, something that lots of tutorials struggle with, thank you so much.
Is loggingView working for you?
Watching this today, although this is 3 years ago and there is an optimized way to use JWT, this really helped me understand what happens during a JWT authentication. Kudos
share link for the optimized way
I think this cannot be used on a app. Right? Mobile app cannot access cookies. I am developing in flutter. Does the method shows in this video can be done using cookies?
The best token based Authentication I have watched. Very detailed. Thank you
Truly the smoothest and most accurate Django-JWT Tutorial I've ever seen!!!
This was the best video I've watched on TH-cam about Authentication using JWT Tokens. Thank you so much!
Thanks a lot man, I had a hard time until I saw this one. The explanations were on point as well, cors even fixed a front-end problem my team had. Hope you grow big!
Glad it helped!
@@ScalableScripts I am getting error while decoding the token in userview
@@nepdevtech me too... For me it says.
"
'str' object has no attribute 'decode'
"
Have u got the solution??
@@ScalableScripts why I am getting - RecursionError: maximum recursion depth exceeded while calling a python object. How to solve...
@@goodboy435 decode is not needed since its already decoded remove the decode and it will work
Perfect Tutorial for basic auth so far. Loved it! Keep it up Sir! 💖
very well explained....loved this. Yeah, some exceptions are that, the person has to make a create_superuser function to create a superuser but its fine. JWT explained wonderfully
in serializer?
Man you don't know how much I appreciate this video, let me tell you I've been looking for something like this for weeks, let me tell you there's nothing.
plz tell me if you know how i applied Bearer method in video video instead of cookies.
Thanks! I had hard times trying to discover how to use jwt and you solved all questions that i had.
Best video for drf authentication. Totally loved it and learned a lot.
I dont usually comment on yt videos, but this video is so damn good, with your explanations and the way how you talk.
Keep up brother
Hi, great video! One question: At @26:12, why did you decode the token? I get the error "'str' object has no attribute 'decode'" If I drop the decoded I get a decoded string.
Hi, You can downgrade the PyJWT package to 1.7.1 or remove the call to decode. It should work
@@matteob9342 removed .decode() and it dit work fine afterwards. Thanks!
Got same error.. Just after an year.
@@matteob9342 thanks matteo... Ur removing decode() call method worked for me too...
@@goodboy435 how can i do it ?
Awesome! thanks for your explanation. I just want to remind these typical topics for django, it always important to continue improving our skills.
Very good video! Without getting lost in the bush, getting to the concept clearly
Greetings from Argentina!
This is an amazing video. So clear. Answered most of my questions before I asked them.
Thank You! You have explained it so clearly, I haven't been able to understand this since days but with this one I was able to easily
This is the best video on JWT and tokens in django and django-rest-framework ... thank you million times sir ❤❤
super straightforward and concise, great job!
that was really helpful, and very straightforward! Thank you so much.
thank you so much for the video, because of this now i and my group can sleep in peace hahahaha
Awesome tutorial dude! One question: at 21:08 when you are fetching the user from the db, why do you do a filter and then a first instead of simply a get()? Thanks!
filter(), whenever you expect more than just one object that matches your criteria. If no item was found matching your criteria, filter() returns am empty queryset without throwing an error.
get(), you expect one (and only one) item that matches your criteria.
Thus if there are more than one objects returned in queryset we would know that via filter
very helpful video and keeping it simple tthanks!
Thanks for the clear explanation. Bdw, what about the refresh token.. don't we need that as well ??
The best explainantion and ONPOINT, loved it, Thank you 🙏
Excellent work. Thank you
Great tutorial my brother!
The cookies aren't saving automatically when I use ReactJs - Axios.
How can I save the cookies automatically and also send it as part of the request using Axios or Fetch API
Such a dope explanation 🔥🔥🔥
29:08, I have installed django-cors-headers and added to settings app and middleware, I am getting: No module named 'corsheaders' please help
Very Greeat Explanation Sir...ThankYou
Thank you for video! Can you tell what is the soft you use for DataBase on 06:42 ?
Super Helpful great tutorial. Thanks a lot.
What about CSRF policies and securities, Why are they not applied here?
Can you tell how can i send token from frontend to backend again for each request as i am storing it as cookie on frontend ?
if you are using axios set withCredentials true
@shaannky Thanks
thank you very much. excellent presentation of the material
Amazing tutorial, thank you very much!
This is tutorials is awesome.. Thanks a lot
@26:00 in the token part, I keep on getting TypeeError: Object of type date-time is not serializable
@@martinteppa4544 That did not seem to help
same error, some solution?
The cookies aren't saving automatically when I use ReactJs - Axios.
How can I save the cookies automatically and also send it as part of the request using Axios or Fetch API
In May 2023, I had to change this:
payload = jwt.decode(token, key='secret', algorithm=["HS256"])
to this:
payload = jwt.decode(token, key='secret', algorithms=["HS256"])
Thanks for this. You just helped me.
Thank you so much. It was a great help!
I learnt a lot here Thank You !!!
'User' object has no attribute '_default_manager' getting this error at 15:21 minutes. Can anybody suggest me some solutions?
Legit helped me
just osm content and step by step explaination
This is Awesome, helpful for me. Thanks
This was very helpful thank you
How can I create super users?
Video Explanation is Really amazingly. But Why there is no refresh token??
Great Tutorial.
But aren't we supposed to have two tokens: access token and refresh token?
best teacher ever
Superb content, very helpful
Thanks a lot good man!
God always bless you!
Many Many Thanks For you good man!
Helps a lot.. Thanks buddy
Very well explained , Thanks
Great content, subscribed !
It is perfect tutorial, thank u, and continue.
Thank you for this. You are awesome!
Hey, I did this auth and now connecting it to Vue js frontend but when I sign out, I am still able to access protected views that need authentications. Only when I clear the browser cookie do the access stop. Also the cookie is still within the header when I sign out. How can I fix this? it work fine in postman.
is that pyjwt assigns refresh token to user , just like simple jwt does ? also does it refresh tokens automatically after expiration time ?
thank you for this tutorial very much!
Does this work for multiple users getting logged in and out at the same time?
Спасибо большое за урок! Очень помог!
Great video! If I'm using Django templates instead of a separate front end, can I still use JWT for authentication?
There's a issue with "utcnow()" function in newer django versions. My cookie instantly get deleted.
Please, how can i use django default isAuthenticated permission instead of having to check if the token is in cookie.
When you use IsAuthenticated permission class, it don't work. Can you explain why?
same issue im facing
Amazing tutorial dude
Tysm. Plz login using role such admin, user,student,teacher..plz make video on this
The best (from morocco)
Thanks for making this video.
great tutorial. How about the guard ?
23:50 JWT Tokens
Can PyJWT and Simple JWT be used for a django project?
Also when the data from the frontend gets to the backend, django raises an error with the email.
Thank you for your attention
Did you figured out way this happens?
thanks for high quality video, but i have a question for you~~
in the Userview part,, why you attech code -> ".first()" ??
when I want all of the logined people, how can i???
Because filter() returns a List and I add .first() to retrieve a single object. To get all the logged in users you have to store the jwt with the user_id in a database
@@ScalableScripts explain code??TT
after setting username=None. i cant create superuser.
Could you fix it?
@@AshishSingh-dn8wb sorry dude. Workung with magento now.
Do you know how to use JWT auth in django's admin interface?
Thanks very will explanation
Superb Content Bro
great explanation!
Please also include permissions. Like only authenticated users can see posts.
if someone have login error with str.decode blahblah. it can be fixed with freezing PyJWT==1.7.1 in requirements.txt
you can change
instead of
User.objects.filter(id=id).first()
you can
User.objects.get(pk=id)
and thank for the tuto, I'll watch the svelte part now :)
Need help! When passing a foreign key as the id to the payload, it states Type Error and not JSON serializable.
I'm getting type error when using a id of a foreign key of a model to reference the payload
how to use jwt with other models ?
can you please make a video or help on it
Can we use this cookie based authentication with React Native?
Excellent tutorial,
can you make a video on how to integrate Django rest framework with Keycloak?
I get {"detail":"Authentication credentials were not provided."}, even though I the token is already on the token. Can someone help me? Thank you.
did you find any solution for this?
This is not JWT but Token based authentication since it needs database migration but it is amazing.
how i perform traditional Bearer method for above code plz tell me if you know
I can't seem to understand the purpose of the 'Authenticated User' section.
thank alot this is what i am looking for, but how to update the user data ?
how i fetch token data same like you when i passing token in barrier token panel
plz tell me if any ideas
GREAT Tutorial!
awesome video! Thank you!
Is it refreshing jwt token automatically after expiry?
Don't we have to invalidate the JWT before removing it?
great tutorial! thumbs up!
you are a life save dude
can i ask u ?