How Can I Disable Authentication in Django REST Framework

authentication django-rest-framework
machineghost picture machineghost · Nov 23, 2014 · Viewed 40.5k times · Source

I'm working on a store site, where every user is going to be anonymous (well, until it's time to pay at least), and I'm trying to use Django REST Framework to serve the product API, but it keeps complaining about:

"detail": "Authentication credentials were not provided."

I found some settings related to authentication, but I couldn't find anything like ENABLE_AUTHENTICATION = True. How do I simply disable authentication, and let any visitor to the site access the API?

Answer

inancsevinc picture inancsevinc · Nov 23, 2014

You can give empty defaults for the permission and authentication classes in your settings.

REST_FRAMEWORK = {
    # other settings...

    'DEFAULT_AUTHENTICATION_CLASSES': [],
    'DEFAULT_PERMISSION_CLASSES': [],
}

Related questions

User Authentication in Django Rest Framework + Angular.js web app

I'm working on a webapp where users can login to see their online wine cellar. I've got the Django REST models setup, as well as the front-end design in Angular but I'm having trouble putting the pieces together and my …

Read More
drf django rest auth how to expire or delete token?

I am trying to implement authentication using django-rest-framework and django-rest-auth by tivix (link to documentation). I created a user using django shell like: from django.contrib.auth.models import User user = User.objects.create_user(username='foo', email='foo@bar.…

Read More
Get user object from token string in DRF?

I have a token string from Django REST Framework's TokenAuthentication. I need to get the corresponding user object. How would I go about doing this?

Read More