8 лет назад · 7b320526a8
--- a/misago/users/api/auth.py
+++ b/misago/users/api/auth.py
@@ -1,7 +1,7 @@
 
				 from django.contrib import auth
			
 
				 from django.core.exceptions import ValidationError
			
 
				 from django.utils.translation import ugettext as _
			
 
				-from django.views.decorators.csrf import csrf_protect, ensure_csrf_cookie
			
 
				+from django.views.decorators.csrf import csrf_protect
			
 
				 
			
 
				 from rest_framework import status
			
 
				 from rest_framework.decorators import api_view, permission_classes
			
@@ -56,15 +56,6 @@ def session_user(request):
 
				 
			
 
				 
			
 
				 """
			
 
				-GET /auth/token/ will return cookie with current auth token
			
 
				-"""
			
 
				-@api_view(['GET'])
			
 
				-@ensure_csrf_cookie
			
 
				-def get_token(request):
			
 
				-    return Response({'detail': 'ok'})
			
 
				-
			
 
				-
			
 
				-"""
			
 
				 POST /auth/send-activation/ with CSRF token and email
			
 
				 will mail account activation link to requester
			
 
				 """
			
--- a/misago/users/tests/test_auth_api.py
+++ b/misago/users/tests/test_auth_api.py
@@ -1,22 +1,9 @@
 
				-from django.conf import settings
			
 
				 from django.contrib.auth import get_user_model
			
 
				 from django.core import mail
			
 
				 from django.test import TestCase
			
 
				-from django.utils.encoding import smart_str
			
 
				 
			
 
				 from ..models import BAN_USERNAME, Ban
			
 
				-from ..tokens import make_activation_token, make_password_change_token
			
 
				-
			
 
				-
			
 
				-class GetTokenTests(TestCase):
			
 
				-    def test_token_api(self):
			
 
				-        """api returns CSRF token on GET request"""
			
 
				-        response = self.client.get('/api/auth/token/')
			
 
				-
			
 
				-        self.assertEqual(response.status_code, 200)
			
 
				-        self.assertEqual(response.json(), {'detail': 'ok'})
			
 
				-
			
 
				-        self.assertIn(settings.CSRF_COOKIE_NAME, response.client.cookies)
			
 
				+from ..tokens import make_password_change_token
			
 
				 
			
 
				 
			
 
				 class GatewayTests(TestCase):
			
--- a/misago/users/urls/api.py
+++ b/misago/users/urls/api.py
@@ -10,7 +10,6 @@ from ..api.users import UserViewSet
 
				 
			
 
				 urlpatterns = [
			
 
				     url(r'^auth/$', auth.gateway, name='auth'),
			
 
				-    url(r'^auth/token/$', auth.get_token, name='get-token'),
			
 
				     url(r'^auth/send-activation/$', auth.send_activation, name='send-activation'),
			
 
				     url(r'^auth/send-password-form/$', auth.send_password_form, name='send-password-form'),
			
 
				     url(r'^auth/change-password/(?P<pk>\d+)/(?P<token>[a-zA-Z0-9]+)/$', auth.change_forgotten_password, name='change-forgotten-password'),