fix: AK/SK remained valid after the user expired.

2025-09-16 12:20:57 +08:00 · 2025-09-16 12:20:57 +08:00 · 3c255f9fa6
parent a6b5437f6a
commit 3c255f9fa6
2 changed files with 5 additions and 1 deletions
--- a/apps/authentication/backends/drf.py
+++ b/apps/authentication/backends/drf.py
@ -128,7 +128,7 @@ class SignatureAuthentication(signature.SignatureAuthentication):
        # example implementation:
        try:
            key = AccessKey.objects.get(id=key_id)
-            if not key.is_active:
+            if not key.is_valid:
                return None, None
            user, secret = key.user, str(key.secret)
            after_authenticate_update_date(user, key)
--- a/apps/authentication/models/access_key.py
+++ b/apps/authentication/models/access_key.py
@ -26,6 +26,10 @@ class AccessKey(models.Model):
    date_last_used = models.DateTimeField(null=True, blank=True, verbose_name=_('Date last used'))
    date_created = models.DateTimeField(auto_now_add=True)

+    @property
+    def is_valid(self):
+        return self.is_active and self.user.is_valid
+
    def get_id(self):
        return str(self.id)