Add JWT Token Support for Single Page Applications through Django Rest Framework

[mahaffey]

"Closes" Issue #56

I also added the previously asked for get_user_model definition of a User in views.py.

Updated README to reflect new possible settings that I created.

Added two dependencies to this module in setup.py (djangorestframwork-jwt and django-rest-auth).

• Is there a way to have conditional dependencies to keep this more lightweight for the users who do not have a need for DRF?

My implementation adds a few lines of code before the normal login sequence in views.py.

Instead of immediate redirection to the defined DEFAULT_NEXT_URL, it first checks to see if the user has enabled USE_JWT. If this is set to True, my block of code is then executed.

1. We first create the JWT from the target_user using jwt_encode
2. We then check to see if the user has implemented the FRONTEND_URL, if not we fall back to the default, which is DEFAULT_NEXT_URL
3. We now create the query string consisting of the user id (uid) and JWT (token).

• Example URL: https://myfrontend.com/?uid=(user_id)&token=(jwt token)

4. We then redirect to the frontend_url with the query params appended to the string
5. The client user can now use this token and uid to send with every fetch request, thus enabling SSO/SAML for single page applications

Any feedback would be great! Thanks