Watching this today, although this is 3 years ago and there is an optimized way to use JWT, this really helped me understand what happens during a JWT authentication. Kudos
I think this cannot be used on a app. Right? Mobile app cannot access cookies. I am developing in flutter. Does the method shows in this video can be done using cookies?
Thanks a lot man, I had a hard time until I saw this one. The explanations were on point as well, cors even fixed a front-end problem my team had. Hope you grow big!
very well explained....loved this. Yeah, some exceptions are that, the person has to make a create_superuser function to create a superuser but its fine. JWT explained wonderfully
Man you don't know how much I appreciate this video, let me tell you I've been looking for something like this for weeks, let me tell you there's nothing.
Hi, great video! One question: At @26:12, why did you decode the token? I get the error "'str' object has no attribute 'decode'" If I drop the decoded I get a decoded string.
Great tutorial my brother! The cookies aren't saving automatically when I use ReactJs - Axios. How can I save the cookies automatically and also send it as part of the request using Axios or Fetch API
In May 2023, I had to change this: payload = jwt.decode(token, key='secret', algorithm=["HS256"]) to this: payload = jwt.decode(token, key='secret', algorithms=["HS256"])
The cookies aren't saving automatically when I use ReactJs - Axios. How can I save the cookies automatically and also send it as part of the request using Axios or Fetch API
Awesome tutorial dude! One question: at 21:08 when you are fetching the user from the db, why do you do a filter and then a first instead of simply a get()? Thanks!
filter(), whenever you expect more than just one object that matches your criteria. If no item was found matching your criteria, filter() returns am empty queryset without throwing an error. get(), you expect one (and only one) item that matches your criteria. Thus if there are more than one objects returned in queryset we would know that via filter
Hey, I did this auth and now connecting it to Vue js frontend but when I sign out, I am still able to access protected views that need authentications. Only when I clear the browser cookie do the access stop. Also the cookie is still within the header when I sign out. How can I fix this? it work fine in postman.
Thanks but please do `NextAuth` with Django Rest Framework, with email and password. Also, adding OAuth on the same tutorial will be great. I am desperetely waiting for your response.
![Django Rest Framework Authentication 🔒 ✅ Scalable Auth in 27 minutes [2023]](http://i.ytimg.com/vi/llrIu4Qsl7c/mqdefault.jpg)
![Django Rest Framework Authentication 🔒 ✅ Scalable Auth in 27 minutes [2023]](/img/tr.png)
Truly the smoothest and most accurate Django-JWT Tutorial I've ever seen!!!
Watching this today, although this is 3 years ago and there is an optimized way to use JWT, this really helped me understand what happens during a JWT authentication. Kudos
share link for the optimized way
I think this cannot be used on a app. Right? Mobile app cannot access cookies. I am developing in flutter. Does the method shows in this video can be done using cookies?
The best token based Authentication I have watched. Very detailed. Thank you
Thanks a lot man, I had a hard time until I saw this one. The explanations were on point as well, cors even fixed a front-end problem my team had. Hope you grow big!
Glad it helped!
@@ScalableScripts I am getting error while decoding the token in userview
@@nepdevtech me too... For me it says.
"
'str' object has no attribute 'decode'
"
Have u got the solution??
@@ScalableScripts why I am getting - RecursionError: maximum recursion depth exceeded while calling a python object. How to solve...
@@goodboy435 decode is not needed since its already decoded remove the decode and it will work
very well explained....loved this. Yeah, some exceptions are that, the person has to make a create_superuser function to create a superuser but its fine. JWT explained wonderfully
in serializer?
Perfect Tutorial for basic auth so far. Loved it! Keep it up Sir! 💖
Man you don't know how much I appreciate this video, let me tell you I've been looking for something like this for weeks, let me tell you there's nothing.
plz tell me if you know how i applied Bearer method in video video instead of cookies.
thank you so much for the video, because of this now i and my group can sleep in peace hahahaha
This is the best video on JWT and tokens in django and django-rest-framework ... thank you million times sir ❤❤
I dont usually comment on yt videos, but this video is so damn good, with your explanations and the way how you talk.
Keep up brother
Awesome! thanks for your explanation. I just want to remind these typical topics for django, it always important to continue improving our skills.
Very good video! Without getting lost in the bush, getting to the concept clearly
Greetings from Argentina!
Best video for drf authentication. Totally loved it and learned a lot.
This is an amazing video. So clear. Answered most of my questions before I asked them.
26:10
dont need to .decode("utf-8")
just
token = jwt.encode(payload, 'secret', algorithm='HS256')
that's it
Thank You! You have explained it so clearly, I haven't been able to understand this since days but with this one I was able to easily
Hi, great video! One question: At @26:12, why did you decode the token? I get the error "'str' object has no attribute 'decode'" If I drop the decoded I get a decoded string.
Hi, You can downgrade the PyJWT package to 1.7.1 or remove the call to decode. It should work
@@matteob9342 removed .decode() and it dit work fine afterwards. Thanks!
Got same error.. Just after an year.
@@matteob9342 thanks matteo... Ur removing decode() call method worked for me too...
@@goodboy435 how can i do it ?
The best explainantion and ONPOINT, loved it, Thank you 🙏
super straightforward and concise, great job!
very helpful video and keeping it simple tthanks!
that was really helpful, and very straightforward! Thank you so much.
Great tutorial my brother!
The cookies aren't saving automatically when I use ReactJs - Axios.
How can I save the cookies automatically and also send it as part of the request using Axios or Fetch API
Excellent work. Thank you
How can I create super users?
Thanks for the clear explanation. Bdw, what about the refresh token.. don't we need that as well ??
I learnt a lot here Thank You !!!
thank you very much. excellent presentation of the material
Legit helped me
Thanks a lot good man!
God always bless you!
Many Many Thanks For you good man!
Such a dope explanation 🔥🔥🔥
In May 2023, I had to change this:
payload = jwt.decode(token, key='secret', algorithm=["HS256"])
to this:
payload = jwt.decode(token, key='secret', algorithms=["HS256"])
Thanks for this. You just helped me.
Video Explanation is Really amazingly. But Why there is no refresh token??
Can you tell how can i send token from frontend to backend again for each request as i am storing it as cookie on frontend ?
Amazing tutorial, thank you very much!
Super Helpful great tutorial. Thanks a lot.
Very Greeat Explanation Sir...ThankYou
The cookies aren't saving automatically when I use ReactJs - Axios.
How can I save the cookies automatically and also send it as part of the request using Axios or Fetch API
This is not JWT but Token based authentication since it needs database migration but it is amazing.
The best (from morocco)
awesome video! Thank you!
Thank you so much. It was a great help!
Спасибо большое за урок! Очень помог!
There's a issue with "utcnow()" function in newer django versions. My cookie instantly get deleted.
Great content, subscribed !
This is Awesome, helpful for me. Thanks
Helps a lot.. Thanks buddy
Thank you for this. You are awesome!
best teacher ever
Thanks for making this video.
Tysm. Plz login using role such admin, user,student,teacher..plz make video on this
This was very helpful thank you
just osm content and step by step explaination
Awesome tutorial dude! One question: at 21:08 when you are fetching the user from the db, why do you do a filter and then a first instead of simply a get()? Thanks!
filter(), whenever you expect more than just one object that matches your criteria. If no item was found matching your criteria, filter() returns am empty queryset without throwing an error.
get(), you expect one (and only one) item that matches your criteria.
Thus if there are more than one objects returned in queryset we would know that via filter
very nice, thank you!!
When you use IsAuthenticated permission class, it don't work. Can you explain why?
same issue im facing
Superb content, very helpful
Thanks very will explanation
It is perfect tutorial, thank u, and continue.
Thank you so so much brother
Very well explained , Thanks
I have to say THANK YOU!
The biggest THANK YOU!
thank you for this tutorial very much!
after setting username=None. i cant create superuser.
Could you fix it?
@@AshishSingh-dn8wb sorry dude. Workung with magento now.
Amazing tutorial dude
great explanation!
Came from freecodecamp
Thanks helped a lot
The best movie that I saw!
bruh
great tutorial! thumbs up!
Thank you very much
I love this video!!!!! the best ever!
GREAT Tutorial!
Great job, thanks!
Hey, I did this auth and now connecting it to Vue js frontend but when I sign out, I am still able to access protected views that need authentications. Only when I clear the browser cookie do the access stop. Also the cookie is still within the header when I sign out. How can I fix this? it work fine in postman.
you are a life save dude
can i ask u ?
Superb Content Bro
amazing video
I can't seem to understand the purpose of the 'Authenticated User' section.
Excellent tutorial,
Thank you very much!
if someone have login error with str.decode blahblah. it can be fixed with freezing PyJWT==1.7.1 in requirements.txt
I'm getting type error when using a id of a foreign key of a model to reference the payload
Thank you so much!
Thanks but please do `NextAuth` with Django Rest Framework, with email and password. Also, adding OAuth on the same tutorial will be great. I am desperetely waiting for your response.
Thanks a lot man
Thank you! :)
Where is refresh token!!
29:08, I have installed django-cors-headers and added to settings app and middleware, I am getting: No module named 'corsheaders' please help
Thank you for video! Can you tell what is the soft you use for DataBase on 06:42 ?
Please also include permissions. Like only authenticated users can see posts.
Please, how can i use django default isAuthenticated permission instead of having to check if the token is in cookie.
throwing error str object has no attribute 'decode'
Thank you 🤩
I get {"detail":"Authentication credentials were not provided."}, even though I the token is already on the token. Can someone help me? Thank you.
did you find any solution for this?
this is awesome
where are the token stored ? in the user table ??
Great tutorial, you've earned a sub!
great tutorial. How about the guard ?
its a commercial video. i hope u should make a combination.