20๐
โ
You have to be logged in to delete the Token.
Here is how django-rest-auth
handle log out (ref):
def post(self, request):
return self.logout(request)
def logout(self, request):
try:
request.user.auth_token.delete()
except (AttributeError, ObjectDoesNotExist):
pass
logout(request)
return Response({"success": _("Successfully logged out.")},
status=status.HTTP_200_OK)
So to logout :
curl -X POST -H "Authorization: Token <token>" http://127.0.0.1:8000/rest-auth/logout/
Please note that django-rest-auth
support session based and DRF Token Authentication.
Here is doc about DRF Token Authentication and how to use it
Edit
Added info about DRF Token Authentication
๐คvarnothing
Source:stackexchange.com