o i @sjddlmZddlmZmZmZddlmZddlm Z m Z m Z ddl m Z mZmZe dgdd e e d e d dd d ddddgde de dddidgdddGdddejZe dgddee de d ddidgde de ddd idgdddGd!d"d"ejZe dgd#d$ee d%e d dd&idgde d'e ddd(idgdd)dGd*d+d+ejZd,S)-)settings)genericsstatus permissions)Response) extend_schemaOpenApiResponseOpenApiExample)LoginSerializerCustomTokenRefreshSerializerLogoutSerializerz User Authz Login userzOAutentikasi dengan username & password. Token akan disimpan di HttpOnly cookie.z Login suksesz Contoh suksesjohndoeAdmin)idusernamerole)Login berhasil, token disimpan di cookie.userdetail)value) descriptionexamplesz Login gagalz Contoh gagalrzInvalid username or password)i)tagssummaryrrequest responsesc@ eZdZejgZeZddZdS) LoginViewcOst|j|jd}|jdd|j}t|dddtjd}|jd|d dtj d d |jd |d dtj d d |S)NdataTraise_exceptionrrrr access_tokenaccessLaxkeyrhttponlysecuresamesite refresh_tokenrefresh) get_serializerr"is_validvalidated_datarr HTTP_200_OK set_cookierDEBUG)selfrargskwargs serializerr"responser;8/var/www/html/mfile_papteng_new/webapp/api/auth/views.pypost,s0 zLoginView.postN) __name__ __module__ __qualname__rAllowAnypermission_classesr serializer_classr=r;r;r;r<r s r z Refresh tokenz[Gunakan refresh token (dari body, header, atau cookie) untuk mendapatkan access token baru.zRefresh suksesAccess token diperbarui.z Refresh gagalz!Token tidak valid atau kadaluarsac@r) RefreshViewcOs|jdp|jdp|jd}|stdditjdS||jd<|j|jd}|jdd |j }tdd itj d}|j d |d dt j d d|S)Nr/zX-Refresh-Tokenr.rzRefresh token tidak ditemukanr%r!Tr#rDr&r'r(r))r"getheadersCOOKIESrrHTTP_401_UNAUTHORIZEDr0r1r2r3r4rr5)r6rr7r8r/r9r"r:r;r;r<r=gs.     zRefreshView.postN) r>r?r@rIsAuthenticatedrBr rCr=r;r;r;r<rEI rEz Logout userz-Blacklist refresh token dan hapus cookie JWT.z Logout suksesLogout berhasil.z Logout gagalzRefresh token tidak valid)ic@r) LogoutViewcOs:|jid}|jddtdditjd}|j|d|S)Nr!Tr#rrLr%)r:)r0r1rrHTTP_205_RESET_CONTENTsave)r6rr7r8r9r:r;r;r<r=s   zLogoutView.postN) r>r?r@rrArBr rCr=r;r;r;r<rNrKrNN) django.confrrest_frameworkrrrrest_framework.responserdrf_spectacular.utilsrrr serializersr r r GenericAPIViewr rErNr;r;r;r<s    ! +