Fix the None value of the outstanding token of the blacklist (#806)

jazzband · May 30, 2024 · d66d246 · d66d246
1 parent 3b71b89
commit d66d246
Show file tree

Hide file tree

Showing 2 changed files with 17 additions and 0 deletions.
diff --git a/rest_framework_simplejwt/tokens.py b/rest_framework_simplejwt/tokens.py
@@ -265,11 +265,14 @@ def blacklist(self) -> BlacklistedToken:
             """
             jti = self.payload[api_settings.JTI_CLAIM]
             exp = self.payload["exp"]
+            user_id = self.payload.get(api_settings.USER_ID_CLAIM)
 
             # Ensure outstanding token exists with given jti
             token, _ = OutstandingToken.objects.get_or_create(
                 jti=jti,
                 defaults={
+                    "user_id": user_id,
+                    "created_at": self.current_time,
                     "token": str(self),
                     "expires_at": datetime_from_epoch(exp),
                 },

diff --git a/tests/test_token_blacklist.py b/tests/test_token_blacklist.py
@@ -146,6 +146,20 @@ def test_outstanding_token_and_blacklisted_token_expected_str(self):
         self.assertEqual(str(outstanding), expected_outstanding_str)
         self.assertEqual(str(blacklisted), expected_blacklisted_str)
 
+    def test_outstanding_token_and_blacklisted_token_created_at(self):
+        token = RefreshToken.for_user(self.user)
+
+        token.blacklist()
+        outstanding_token = OutstandingToken.objects.get(token=token)
+        self.assertEqual(outstanding_token.created_at, token.current_time)
+
+    def test_outstanding_token_and_blacklisted_token_user(self):
+        token = RefreshToken.for_user(self.user)
+
+        token.blacklist()
+        outstanding_token = OutstandingToken.objects.get(token=token)
+        self.assertEqual(outstanding_token.user, self.user)
+
 
 class TestTokenBlacklistFlushExpiredTokens(TestCase):
     def setUp(self):