Secret API key for accessing Django REST framework

django django-rest-framework
18,353

Solution 1

Use the TokenAuthentication class, as documented here.

You'll also want to setup appropriate permissions, probably using the IsAuthenticated class.

Edit: Apologies - re-reading you post it looks like you want a global secret key, not a per-user one. I'd suggest a custom permission class that checks for the request header and fails if it's not present/not correct.

Solution 2

There is a third party app now for this purpose called django-rest-framework-api-key.

Share:
18,353

Related videos on Youtube

Araz Abishov
Author by

Araz Abishov

Updated on September 16, 2022

Comments

  • Araz Abishov
    Araz Abishov over 1 year

    My aim is to restrict access to API for client applications by specifying API Key. Various services allow you to access their API by means of secret Key, which you have to get in order to perfom requests.

    Note: this is not related to user auth.

    Is there any straightforward solution to do this in django rest framework? Or just to pass the key in request header and then manually handle it?

    Regards

    • Silko
      Silko over 7 years
      Have you managed to solve this? I wonder if you can share an example maybe? Thank you.
  • Araz Abishov
    Araz Abishov over 9 years
    First of all, thank you very much for creating such wonderful tool like django-rest-framework :) It seems to be exactly what I was searching for. I will try to implement custom permission and come back with it here. Many thanks again :)
  • Chozabu
    Chozabu almost 8 years
    I think @ArazAbishov is aiming to setup a system similar to FaceBooks API - an alternative/extension to user auth - so a "client" can create an application on his system, then send requests on the behalf of users, but still tied to their application, limited to the permissions that app is granted
  • Noopur Phalak
    Noopur Phalak almost 2 years
    According to their github page, it does only support python upto 3.5. The latest versions like 3.8, 3.9 and 3.10 are not supported.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to make google, facebook authentication in django with flutter
How can I PUT/POST JSON data to a ListSerializer?
Serializing uploaded file data Django Rest Framework
Add Serializer on Reverse Relationship - Django Rest Framework
Django Rest_framework "Got AttributeError when attempting to get a value for field Process"
ModelViewSet - Update nested field
How to access serializer.data on ListSerializer parent class in DRF?
Django REST serializer: create object without saving
django-rest-framework, multitable model inheritance, ModelSerializers and nested serializers
Django Rest Framework PUT request on unique model field