Merge pull request #2519 from Ofir-Purple/optimize-token-auth-queries

tomchristie · tomchristie · commit d21617ff3bc3 · 2015-02-04T14:20:21.000Z
Prefetching the user object when getting the token in TokenAuthentication
diff --git a/rest_framework/authentication.py b/rest_framework/authentication.py
@@ -167,7 +167,7 @@ def authenticate(self, request):
 
     def authenticate_credentials(self, key):
         try:
-            token = self.model.objects.get(key=key)
+            token = self.model.objects.select_related('user').get(key=key)
         except self.model.DoesNotExist:
             raise exceptions.AuthenticationFailed('Invalid token')
 
diff --git a/tests/test_authentication.py b/tests/test_authentication.py
@@ -202,6 +202,12 @@ def test_post_json_passing_token_auth(self):
         response = self.csrf_client.post('/token/', {'example': 'example'}, format='json', HTTP_AUTHORIZATION=auth)
         self.assertEqual(response.status_code, status.HTTP_200_OK)
 
+    def test_post_json_makes_one_db_query(self):
+        """Ensure that authenticating a user using a token performs only one DB query"""
+        auth = "Token " + self.key
+        func_to_test = lambda: self.csrf_client.post('/token/', {'example': 'example'}, format='json', HTTP_AUTHORIZATION=auth)
+        self.assertNumQueries(1, func_to_test)
+
     def test_post_form_failing_token_auth(self):
         """Ensure POSTing form over token auth without correct credentials fails"""
         response = self.csrf_client.post('/token/', {'example': 'example'})
