4👍
After lot of searching and trying different methods. I came across this post Customize default message djangorestframework-simplejwt retrieved when the user is not active? and have found a way to achieve at least a different message for inactive accounts instead of a different error code. I am putting up this answer for anyone who faces the same problem. I have written the explanations about what I have done as comments in the code itself.
from rest_framework import status, exceptions
from django.utils.translation import gettext_lazy as _
from rest_framework_simplejwt.serializers import TokenObtainPairSerializer, TokenObtainSerializer
class CustomTokenObtainPairSerializer(TokenObtainPairSerializer, TokenObtainSerializer):
# Overiding validate function in the TokenObtainSerializer
def validate(self, attrs):
authenticate_kwargs = {
self.username_field: attrs[self.username_field],
'password': attrs['password'],
}
try:
authenticate_kwargs['request'] = self.context['request']
except KeyError:
pass
# print(f"\nthis is the user of authenticate_kwargs {authenticate_kwargs['email']}\n")
'''
Checking if the user exists by getting the email(username field) from authentication_kwargs.
If the user exists we check if the user account is active.
If the user account is not active we raise the exception and pass the message.
Thus stopping the user from getting authenticated altogether.
And if the user does not exist at all we raise an exception with a different error message.
Thus stopping the execution righ there.
'''
try:
user = CustomUser.objects.get(email=authenticate_kwargs['email'])
if not user.is_active:
self.error_messages['no_active_account']=_(
'The account is inactive'
)
raise exceptions.AuthenticationFailed(
self.error_messages['no_active_account'],
'no_active_account',
)
except CustomUser.DoesNotExist:
self.error_messages['no_active_account'] =_(
'Account does not exist')
raise exceptions.AuthenticationFailed(
self.error_messages['no_active_account'],
'no_active_account',
)
'''
We come here if everything above goes well.
Here we authenticate the user.
The authenticate function return None if the credentials do not match
or the user account is inactive. However here we can safely raise the exception
that the credentials did not match as we do all the checks above this point.
'''
self.user = authenticate(**authenticate_kwargs)
if self.user is None:
self.error_messages['no_active_account'] = _(
'Credentials did not match')
raise exceptions.AuthenticationFailed(
self.error_messages['no_active_account'],
'no_active_account',
)
return super().validate(attrs)
This is the source code of the djangorestframework-simplejwt serializer.py incase anyone wants to have a look https://github.com/jazzband/djangorestframework-simplejwt/blob/master/rest_framework_simplejwt/serializers.py
Source:stackexchange.com