Password reset and Sign out #4114

Closed Answered by pennersr

davidyytan asked this question in Q&A

davidyytan
Sep 13, 2024
Sponsor

For password reset and sign out,

https://docs.allauth.org/_allauth/{client}/v1/auth/password/reset (POST)
https://docs.allauth.org/_allauth/{client}/v1/auth/session (DELETE)

Whenever we are successful in the endpoints it actually returns 401 unauthenticated. Is this intended behaviour?
Is there a way I can wrap it in some kind of signals to return 200 success or in that direction instead of 40x.

If it is intended behaviour, can someone write some simple codeto guide me in the correct direction and show me how it is done.
Thanks a lot and thanks for helping me out.

Answered by pennersr

This is by design. The 401 indicates the authentication status of the user after the action is performed. It is explained here:

https://docs.allauth.org/en/dev/headless/openapi-specification/#section/Authentication-Flows

Also have a look at the example React app (https://react.demo.allauth.org/ and https://codeberg.org/allauth/django-allauth/src/branch/main/examples/react-spa -- it handles all these flows.

View full answer

Replies: 2 comments

pennersr
Sep 13, 2024
Maintainer

This is by design. The 401 indicates the authentication status of the user after the action is performed. It is explained here:

https://docs.allauth.org/en/dev/headless/openapi-specification/#section/Authentication-Flows

Also have a look at the example React app (https://react.demo.allauth.org/ and https://codeberg.org/allauth/django-allauth/src/branch/main/examples/react-spa -- it handles all these flows.

0 replies

Answer selected by davidyytan

davidyytan
Sep 20, 2024
Author Sponsor

thanks!

0 replies

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment