From 690277acf02e434b8d840b42b7ea7a1b7f5b809a Mon Sep 17 00:00:00 2001
From: Chris Meyers <chris.meyers.fsu@gmail.com>
Date: Tue, 27 Feb 2024 14:22:55 -0500
Subject: [PATCH] Make JWT the first auth class and default

* No harm in adding it to the list. If a JWT auth header is provided,
  then process it (valid or not). If a JWT is not provided, move on to
  the next auth.
---
 awx/settings/defaults.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/awx/settings/defaults.py b/awx/settings/defaults.py
index 589c382b9251..756a2d716cff 100644
--- a/awx/settings/defaults.py
+++ b/awx/settings/defaults.py
@@ -353,6 +353,7 @@
     'awx.sso',
     'solo',
     'ansible_base.rest_filters',
+    'ansible_base.jwt_consumer',
 ]
 
 INTERNAL_IPS = ('127.0.0.1',)
@@ -362,6 +363,7 @@
     'DEFAULT_PAGINATION_CLASS': 'awx.api.pagination.Pagination',
     'PAGE_SIZE': 25,
     'DEFAULT_AUTHENTICATION_CLASSES': (
+        'ansible_base.jwt_consumer.awx.auth.AwxJWTAuthentication',
         'awx.api.authentication.LoggedOAuth2Authentication',
         'awx.api.authentication.SessionAuthentication',
         'awx.api.authentication.LoggedBasicAuthentication',