Challenge - 5 Problems

🎖️

DRF Authentication Mastery

Get all challenges correct to earn this badge!

Test your skills under time pressure!

❓ component_behavior

intermediate

2:00remaining

What is the output of this DRF view with TokenAuthentication?

Given the following Django REST Framework view using TokenAuthentication, what will be the HTTP status code if a request is made without any token?

Django

from rest_framework.views import APIView
from rest_framework.response import Response
from rest_framework.authentication import TokenAuthentication
from rest_framework.permissions import IsAuthenticated

class SampleView(APIView):
    authentication_classes = [TokenAuthentication]
    permission_classes = [IsAuthenticated]

    def get(self, request):
        return Response({'message': 'Success'})

A401 Unauthorized error

B200 OK with {'message': 'Success'}

C403 Forbidden error

D500 Internal Server Error

Attempts:

2 left

📝 Syntax

intermediate

2:00remaining

Which option correctly configures JWT authentication in DRF settings?

In Django REST Framework, you want to enable JWT authentication using SimpleJWT. Which of the following REST_FRAMEWORK settings is correct?

"""
REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': [
        'rest_framework.authentication.JWTAuthentication',
    ],
}
"""

"""
REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': [
        'rest_framework_simplejwt.JWTAuthentication',
    ],
}
"""

"""
REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': [
        'rest_framework_simplejwt.authentication.JWTAuthentication',
    ],
}
"""

"""
REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': [
        'rest_framework_simplejwt.authentication.TokenAuthentication',
    ],
}
"""

Attempts:

2 left

❓ state_output

advanced

2:00remaining

What is the value of request.user after JWT authentication?

In a DRF view using JWT authentication, after a valid JWT token is provided, what is the type of request.user?

Django

from rest_framework_simplejwt.authentication import JWTAuthentication
from rest_framework.views import APIView
from rest_framework.response import Response

class MyView(APIView):
    authentication_classes = [JWTAuthentication]

    def get(self, request):
        user_type = type(request.user).__name__
        return Response({'user_type': user_type})

A"TokenUser"

B"User"

C"AnonymousUser"

D"CustomUser"

Attempts:

2 left

🔧 Debug

advanced

2:00remaining

Why does this DRF view raise an error with TokenAuthentication?

Consider this DRF view using TokenAuthentication. It raises an error when a request with a valid token is made. What is the cause?

Django

from rest_framework.views import APIView
from rest_framework.response import Response
from rest_framework.authentication import TokenAuthentication
from rest_framework.permissions import IsAuthenticated

class DebugView(APIView):
    authentication_classes = [TokenAuthentication]
    permission_classes = [IsAuthenticated]

    def get(self, request):
        token_key = request.auth.key
        return Response({'token': token_key})

A'request.auth' is None, so accessing 'key' raises AttributeError

B'request.auth' is a Token object, but 'key' attribute is misspelled

C'request.auth' is a Token object, but 'key' attribute is private

D'request.auth' is a string, so 'key' attribute does not exist

Attempts:

2 left

🧠 Conceptual

expert

2:00remaining

Which statement correctly describes JWT token refresh behavior in DRF SimpleJWT?

In Django REST Framework using SimpleJWT, which statement about the token refresh endpoint is true?

AThe refresh token can be used multiple times until it expires to get new access tokens.

BThe refresh token can only be used once; after refresh, it becomes invalid.

CThe refresh token automatically renews itself on every access token request.

DThe refresh token is the same as the access token but with a longer expiry.

Attempts:

2 left