dmutende · January 16, 2020 16:35
diff --git a/oauth2_graphql_readme.txt b/oauth2_graphql_readme.txt
 - create a .py file with 2 classes (OAuth2ProtectedResourceMixin and OAuth2ProtectedGraph). see 'utils.py' file
 - then in your Django's 'urls.py', wrap the graphql endpoint. see 'urls.py.
diff --git a/urls.py b/urls.py
 # some other code
 from utils import OAuth2ProtectedGraph

 # some other code
 urlpatterns = [
    # some other code
  
    url(r'^o/', include('oauth2_provider.urls', namespace='oauth2_provider')),
    url(r'^evr/graph', csrf_exempt(OAuth2ProtectedGraph.as_view(graphiql=True, schema=schema))),
    
    # some other code
 ]

 # some other code
diff --git a/utils.py b/utils.py
 from django.http import HttpResponse
 from oauth2_provider.views import ProtectedResourceView
 from oauth2_provider.views.mixins import ProtectedResourceMixin

 from rest_framework import status

 from graphene_django.views import GraphQLView
 from rest_framework.utils import json


 class OAuth2ProtectedResourceMixin(ProtectedResourceView):

    def dispatch(self, request, *args, **kwargs):
        print(request.method, request)
        # let preflight OPTIONS requests pass
        if request.method.upper() == "OPTIONS":
            return super(ProtectedResourceMixin, self).dispatch(request, *args, **kwargs)

        # check if the request is valid and the protected resource may be accessed
        valid, r = self.verify_request(request)
        if valid:
            request.resource_owner = r.user
            return super(ProtectedResourceMixin, self).dispatch(request, *args, **kwargs)
        else:
            message = {'evr-api':
                           {'errors': ['Authentication failure']}}
            return HttpResponse(json.dumps(message),
                                content_type="application/json",
                                status=status.HTTP_401_UNAUTHORIZED)


 class OAuth2ProtectedGraph(OAuth2ProtectedResourceMixin, GraphQLView):

    @classmethod
    def as_view(cls, *args, **kwargs):
        view = super(OAuth2ProtectedGraph, cls).as_view(*args, **kwargs)
        return view
	- create a .py file with 2 classes (OAuth2ProtectedResourceMixin and OAuth2ProtectedGraph). see 'utils.py' file
	- then in your Django's 'urls.py', wrap the graphql endpoint. see 'urls.py.
	# some other code
	from utils import OAuth2ProtectedGraph

	# some other code
	urlpatterns = [
	# some other code

	url(r'^o/', include('oauth2_provider.urls', namespace='oauth2_provider')),
	url(r'^evr/graph', csrf_exempt(OAuth2ProtectedGraph.as_view(graphiql=True, schema=schema))),

	# some other code
	]

	# some other code
	from django.http import HttpResponse
	from oauth2_provider.views import ProtectedResourceView
	from oauth2_provider.views.mixins import ProtectedResourceMixin

	from rest_framework import status

	from graphene_django.views import GraphQLView
	from rest_framework.utils import json


	class OAuth2ProtectedResourceMixin(ProtectedResourceView):

	def dispatch(self, request, args, *kwargs):
	print(request.method, request)
	# let preflight OPTIONS requests pass
	if request.method.upper() == "OPTIONS":
	return super(ProtectedResourceMixin, self).dispatch(request, args, *kwargs)

	# check if the request is valid and the protected resource may be accessed
	valid, r = self.verify_request(request)
	if valid:
	request.resource_owner = r.user
	return super(ProtectedResourceMixin, self).dispatch(request, args, *kwargs)
	else:
	message = {'evr-api':
	{'errors': ['Authentication failure']}}
	return HttpResponse(json.dumps(message),
	content_type="application/json",
	status=status.HTTP_401_UNAUTHORIZED)


	class OAuth2ProtectedGraph(OAuth2ProtectedResourceMixin, GraphQLView):

	@classmethod
	def as_view(cls, args, *kwargs):
	view = super(OAuth2ProtectedGraph, cls).as_view(args, *kwargs)
	return view