From 41435a683869e9a5efff059bbccb6222b3facf6c Mon Sep 17 00:00:00 2001
From: Yohann D'ANELLO <ynerant@crans.org>
Date: Thu, 4 Nov 2021 14:25:35 +0100
Subject: [PATCH] Store access token id in session data

---
 users/models.py | 4 ++++
 users/views.py  | 2 ++
 2 files changed, 6 insertions(+)

diff --git a/users/models.py b/users/models.py
index c4b2f37..0751d56 100644
--- a/users/models.py
+++ b/users/models.py
@@ -202,6 +202,10 @@ class AccessToken(models.Model):
 
         return user
 
+    @classmethod
+    def get_token(cls, request):
+        return AccessToken.objects.get(pk=request.session['access_token_id'])
+
     class Meta:
         verbose_name = _('access token')
         verbose_name_plural = _('access tokens')
diff --git a/users/views.py b/users/views.py
index 65e91b8..731b15e 100644
--- a/users/views.py
+++ b/users/views.py
@@ -37,6 +37,8 @@ class AuthorizeView(RedirectView):
                 datetime.fromtimestamp(token['expires_at'])),
         )
         user = token_obj.fetch_user(True)
+        self.request.session['access_token_id'] = token_obj.id
+        self.request.session.save()
         login(self.request, user)
         return reverse('index')