added api/pk/satellite, authorisation endpointsm, pagination

2025-04-05 23:49:07 +09:00 · 2025-04-05 23:49:07 +09:00 · 8225b18a2a
commit 8225b18a2a
parent cc5187c3a1
16 changed files with 284 additions and 26 deletions
--- a/testapi/settings.py
+++ b/testapi/settings.py
@ -41,7 +41,7 @@ INSTALLED_APPS = [
    'rest_framework.authtoken',
    'drf_spectacular', 
    'corsheaders',
-    'api'
+    'api.apps.ApiConfig',
 ]

 MIDDLEWARE = [
@ -55,6 +55,13 @@ MIDDLEWARE = [
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
 ]

+CORS_ALLOWED_ORIGINS = [
+    'http://localhost:5173',
+    'http://127.0.0.1:5173',
+]
+
+CORS_EXPOSE_HEADERS = ['Content-Type', 'X-CSRFToken']
+CORS_ALLOW_CREDENTIALS = True
 CORS_ALLOW_ALL_ORIGINS = True

 ROOT_URLCONF = 'testapi.urls'
@ -140,6 +147,8 @@ DEFAULT_AUTO_FIELD = 'django.db.models.BigAutoField'

 REST_FRAMEWORK = {     
    # ВАШИ НАСТРОЙКИ     
+    'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.PageNumberPagination',
+    'PAGE_SIZE': 100,
    'DEFAULT_SCHEMA_CLASS': 'drf_spectacular.openapi.AutoSchema', 
    'DEFAULT_AUTHENTICATION_CLASSES': [
         'rest_framework.authentication.TokenAuthentication',
@ -147,5 +156,17 @@ REST_FRAMEWORK = {
    'DEFAULT_PERMISSION_CLASSES': [
        'rest_framework.permissions.IsAuthenticated',
        #'rest_framework.permissions.AllowAny',
-    ]
+    ],
+    'DEFAULT_RENDERER_CLASSES': [
+        'rest_framework.renderers.JSONRenderer',
+    ],
+    'DEFAULT_AUTHENTICATION_CLASSES': [
+        'rest_framework.authentication.SessionAuthentication',
+    ],
 }
+
+CSRF_COOKIE_SAMESITE = 'Lax'
+SESSION_COOKIE_SAMESITE = 'Lax'
+CSRF_COOKIE_HTTPONLY = True
+SESSION_COOKIE_HTTPONLY = True
+CSRF_TRUSTED_ORIGINS = ['http://localhost:5173']