Fix the None value of the outstanding token of the blacklist (#806)

jazzband · May 30, 2024 · d66d246 · d66d246
1 parent 3b71b89
commit d66d246
Show file tree

Hide file tree

Showing 2 changed files with 17 additions and 0 deletions.
diff --git a/rest_framework_simplejwt/tokens.py b/rest_framework_simplejwt/tokens.py
@@ -265,11 +265,14 @@ def blacklist(self) -> BlacklistedToken:
  """
  jti = self.payload[api_settings.JTI_CLAIM]
  exp = self.payload["exp"]
+ user_id = self.payload.get(api_settings.USER_ID_CLAIM)
 
  # Ensure outstanding token exists with given jti
  token, _ = OutstandingToken.objects.get_or_create(
  jti=jti,
  defaults={
+ "user_id": user_id,
+ "created_at": self.current_time,
  "token": str(self),
  "expires_at": datetime_from_epoch(exp),
  },

diff --git a/tests/test_token_blacklist.py b/tests/test_token_blacklist.py
@@ -146,6 +146,20 @@ def test_outstanding_token_and_blacklisted_token_expected_str(self):
  self.assertEqual(str(outstanding), expected_outstanding_str)
  self.assertEqual(str(blacklisted), expected_blacklisted_str)
 
+ def test_outstanding_token_and_blacklisted_token_created_at(self):
+ token = RefreshToken.for_user(self.user)
+
+ token.blacklist()
+ outstanding_token = OutstandingToken.objects.get(token=token)
+ self.assertEqual(outstanding_token.created_at, token.current_time)
+
+ def test_outstanding_token_and_blacklisted_token_user(self):
+ token = RefreshToken.for_user(self.user)
+
+ token.blacklist()
+ outstanding_token = OutstandingToken.objects.get(token=token)
+ self.assertEqual(outstanding_token.user, self.user)
+
 
 class TestTokenBlacklistFlushExpiredTokens(TestCase):
  def setUp(self):