[ADD] HORILLA_API: Add swagger

2025-12-23 15:01:24 +05:30
parent 641a4d4842
commit f4bedaca4d
21 changed files with 1049 additions and 707 deletions
--- a/horilla_api/auth.py
+++ b/horilla_api/auth.py
@@ -0,0 +1,39 @@
+"""
+Authentication utilities for the API
+"""
+from rest_framework import authentication
+from rest_framework_simplejwt.authentication import JWTAuthentication
+from rest_framework.exceptions import AuthenticationFailed
+
+class SwaggerAuthentication(authentication.BaseAuthentication):
+    """
+    Custom authentication class for Swagger UI
+    """
+    def authenticate(self, request):
+        # Get the authentication header
+        auth_header = request.META.get('HTTP_AUTHORIZATION', '')
+        
+        # Try JWT authentication first
+        if auth_header.startswith('Bearer '):
+            jwt_auth = JWTAuthentication()
+            try:
+                return jwt_auth.authenticate(request)
+            except:
+                pass
+        
+        # Fall back to session authentication
+        if request.user and request.user.is_authenticated:
+            return (request.user, None)
+        
+        return None
+
+
+class RejectBasicAuthentication(authentication.BaseAuthentication):
+    """
+    Explicitly reject HTTP Basic Auth across the API with a clear error message.
+    """
+    def authenticate(self, request):
+        auth_header = request.META.get('HTTP_AUTHORIZATION', '')
+        if auth_header.startswith('Basic '):
+            raise AuthenticationFailed('Basic authentication is disabled. Use Bearer token (JWT) in the Authorization header.')
+        return None