Public API: token authentication

author: Étienne Loks <etienne.loks@iggdrasil.net> 2019-07-15 13:16:06 +0200
committer: Étienne Loks <etienne.loks@iggdrasil.net> 2019-07-15 13:16:06 +0200
commit: 39b9d28faf50ec340e69e6389a7eba3e6d99f291 (patch)
tree: 9b71c81f2b9f8cb0bbd85dfb5f361d9c1ba71397 /archaeological_finds/views.py
parent: 348414a54856bd3bda2b391278bfba49c051fd65 (diff)
download: Ishtar-39b9d28faf50ec340e69e6389a7eba3e6d99f291.tar.bz2
Ishtar-39b9d28faf50ec340e69e6389a7eba3e6d99f291.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/archaeological_finds/views.py b/archaeological_finds/views.py
index d5d5d88b6..763733bd9 100644
--- a/archaeological_finds/views.py
+++ b/archaeological_finds/views.py
@@ -20,6 +20,7 @@
 from collections import OrderedDict
 import json
 
+from rest_framework import authentication, permissions
 from rest_framework.views import APIView
 from rest_framework.response import Response
 
@@ -1008,8 +1009,8 @@ class QAFindbasketDuplicateFormView(QAItemForm):
 
 
 class PublicFindAPI(APIView):
-    # authentication_classes = (authentication.TokenAuthentication,)
-    # permission_classes = (permissions.IsAdminUser,)
+    authentication_classes = (authentication.TokenAuthentication,)
+    permission_classes = (permissions.IsAuthenticated,)
 
     def get_queryset(self):
         empty = models.Find.objects.filter(pk=None)
author	Étienne Loks <etienne.loks@iggdrasil.net>	2019-07-15 13:16:06 +0200
committer	Étienne Loks <etienne.loks@iggdrasil.net>	2019-07-15 13:16:06 +0200
commit	39b9d28faf50ec340e69e6389a7eba3e6d99f291 (patch)
tree	9b71c81f2b9f8cb0bbd85dfb5f361d9c1ba71397 /archaeological_finds/views.py
parent	348414a54856bd3bda2b391278bfba49c051fd65 (diff)
download	Ishtar-39b9d28faf50ec340e69e6389a7eba3e6d99f291.tar.bz2 Ishtar-39b9d28faf50ec340e69e6389a7eba3e6d99f291.zip