What guide should i follow to set up protection to my django rest API?

carloso0114 · September 27, 2023, 9:17pm

Im using React for frontend, and i wa able to login/logout using either auth0 users database and google/icloud/microsoft accounts, and im able to get the getAccessTokenSilently() and use my urls endpoints, however i realized that i could use the access token and send anything in the body of the request.

My goal is to create posts that belongs to the current user, verifying that the body from the request is indeed the info from the user.

For example

user = “oauth-g | 2398908203 "
tex = " testing”

Are there any topics or guides related to this matter?

tyf · September 27, 2023, 10:24pm

Hello @carloso0114 welcome to the community!

We provide a guide on setting up a Django API (below), but verifying the body of the request is a bit outside the scope of Auth0 - You can verify that the user has the correct permissions, but the body itself you’d need to handle on your end as far as I’m aware.

https://auth0.com/docs/quickstart/backend/django/interactive

system · October 11, 2023, 10:25pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Generating Access Token Help jwt , auth0 , api	4	3251	September 16, 2022
Secure api requests from react to django backend Help react , django	2	3029	September 10, 2022
Can Auth0 M2M Token Be Used To Send POST Requests? Help token , react , post , django	5	5392	July 20, 2019
Setting up Auth0 with SwiftUI and Django Rest Framework Help auth0 , authentication , swift , django , swiftui	0	2479	April 19, 2022
ReactJs, NextJs, Django Rest Framework, Python. Login and accessToken Help ticket-management , support-center	0	375	April 9, 2024

What guide should i follow to set up protection to my django rest API?

Related Topics