I see that the rest_framework_simplejwt.authentication.JWTAuthentication authentication class is only checking for the Authentication: Bearer Token header, but there is no way to do it directly with the cookies (no authentication header).
In fact, by default, it seems like Www-Authenticate is bearer dependent, and when using the dj-rest-framework JWTCookieAuthentication class is not overriding the authentication method.
Could a simpleJWT cookie exclusive authentication method be added?
Andrew-Chen-Wang
commented
7 months ago
Hello,
I see that the rest_framework_simplejwt.authentication.JWTAuthentication authentication class is only checking for the Authentication: Bearer Token header, but there is no way to do it directly with the cookies (no authentication header).
In fact, by default, it seems like Www-Authenticate is bearer dependent, and when using the dj-rest-framework JWTCookieAuthentication class is not overriding the authentication method.
Could a simpleJWT cookie exclusive authentication method be added?
Thanks!