perf: move oauth2_provider api auth_backend to the end, and while accesstoken_backend not user do not raise execption, go on next bakcned auth (#16393)

* perf: move oauth2_provider api auth_backend to the end, and while accesstoken_backend not user do not raise execption, go on next bakcned auth * perf: re-sorted DEFAULT_AUTHENTICATION_CLASSES --------- Co-authored-by: Bai <baijiangjie@gmail.com>
2026-05-03 09:43:55 +00:00 · 2025-12-08 09:57:17 +08:00
parent ba70edf221
commit ecff2ea07e
2 changed files with 4 additions and 8 deletions
--- a/apps/authentication/backends/drf.py
+++ b/apps/authentication/backends/drf.py
@@ -77,10 +77,6 @@ class AccessTokenAuthentication(authentication.BaseAuthentication):
        model = get_user_model()
        user_id = cache.get(token)
        user = get_object_or_none(model, id=user_id)
-
-        if not user:
-            msg = _('Invalid token or cache refreshed.')
-            raise exceptions.AuthenticationFailed(msg)
        return user, None

    def authenticate_header(self, request):
--- a/apps/jumpserver/settings/libs.py
+++ b/apps/jumpserver/settings/libs.py
@@ -30,11 +30,11 @@ REST_FRAMEWORK = {
    ),
    'DEFAULT_AUTHENTICATION_CLASSES': (
        # 'rest_framework.authentication.BasicAuthentication',
-        "oauth2_provider.contrib.rest_framework.OAuth2Authentication",
-        'authentication.backends.drf.AccessTokenAuthentication',
-        'authentication.backends.drf.PrivateTokenAuthentication',
-        'authentication.backends.drf.ServiceAuthentication',
        'authentication.backends.drf.SignatureAuthentication',
+        'authentication.backends.drf.ServiceAuthentication',
+        'authentication.backends.drf.PrivateTokenAuthentication',
+        'authentication.backends.drf.AccessTokenAuthentication',
+        "oauth2_provider.contrib.rest_framework.OAuth2Authentication",
        'authentication.backends.drf.SessionAuthentication',
    ),
    'DEFAULT_FILTER_BACKENDS': (