djangorestframework-simplejwt
A minimal JSON Web Token authentication plugin for Django REST Framework
Description
Simple JWT ========== .. image:: https://jazzband.co/static/img/badge.svg :target: https://jazzband.co/ :alt: Jazzband .. image:: https://github.com/jazzband/djangorestframework-simplejwt/workflows/Test/badge.svg :target: https://github.com/jazzband/djangorestframework-simplejwt/actions :alt: GitHub Actions .. image:: https://codecov.io/gh/jazzband/djangorestframework-simplejwt/branch/master/graph/badge.svg :target: https://codecov.io/gh/jazzband/djangorestframework-simplejwt .. image:: https://img.shields.io/pypi/v/djangorestframework-simplejwt.svg :target: https://pypi.python.org/pypi/djangorestframework-simplejwt .. image:: https://img.shields.io/pypi/pyversions/djangorestframework-simplejwt.svg :target: https://pypi.python.org/pypi/djangorestframework-simplejwt .. image:: https://img.shields.io/pypi/djversions/djangorestframework-simplejwt.svg :target: https://pypi.python.org/pypi/djangorestframework-simplejwt .. image:: https://readthedocs.org/projects/django-rest-framework-simplejwt/badge/?version=latest :target: https://django-rest-framework-simplejwt.readthedocs.io/en/latest/ Abstract -------- Simple JWT is a JSON Web Token authentication plugin for the `Django REST Framework <http://www.django-rest-framework.org/>`__. For full documentation, visit `django-rest-framework-simplejwt.readthedocs.io <https://django-rest-framework-simplejwt.readthedocs.io/en/latest/>`__. Translations ------------ Contribute translations directly with PRs or via inlang https://inlang.com/editor/github.com/jazzband/djangorestframework-simplejwt
Release History
| Version | Changes | Urgency | Date |
|---|---|---|---|
| 5.5.1 | Imported from PyPI (5.5.1) | Low | 4/21/2026 |
| v5.5.1 | ## 5.5.1 Missing Migration for rest_framework_simplejwt.token_blacklist app. A previously missing migration (0013_blacklist) has now been added. This issue arose because the migration file was mistakenly not generated earlier. This migration was never part of an official release, but users following the latest master branch may have encountered it. **Notes for Users** If you previously ran makemigrations in production and have a 0013_blacklist migration in your django_migrations table, fo | Low | 7/21/2025 |
| v5.5.0 | # Differing Behavior Change * Adds new refresh tokens to OutstandingToken db. by @thecarpetjasp in https://github.com/jazzband/djangorestframework-simplejwt/pull/866 ## What's Changed * Cap PyJWT version to <2.10.0 to avoid incompatibility with subject claim type requirement by @grayver in https://github.com/jazzband/djangorestframework-simplejwt/pull/843 * Add specific "token expired" exceptions by @vainu-arto in https://github.com/jazzband/djangorestframework-simplejwt/pull/830 * Fix us | Low | 2/26/2025 |
| v5.4.0 | ## 5.4.0 * Changed string formatting in views by @Egor-oop in https://github.com/jazzband/djangorestframework-simplejwt/pull/750 * Enhance BlacklistMixin with Generic Type for Accurate Type Inference by @Dresdn in https://github.com/jazzband/djangorestframework-simplejwt/pull/768 * Improve type of `Token.for_user` to allow subclasses by @sterliakov in https://github.com/jazzband/djangorestframework-simplejwt/pull/776 * Fix the `Null` value of the `OutstandingToken` of the `BlacklistMixin.b | Low | 1/7/2025 |
| v5.3.1 | ## What's Changed * Remove EOL Python, Django and DRF versions by @KOliver94 in https://github.com/jazzband/djangorestframework-simplejwt/pull/754 * Update Korean translations by @TGoddessana in https://github.com/jazzband/djangorestframework-simplejwt/pull/753 * Declare support for type checking (closes #664) by @PedroPerpetua in https://github.com/jazzband/djangorestframework-simplejwt/pull/760 * Remove usages of deprecated datetime.utcnow() and datetime.utcfromtimestamp() by @kozlek in ht | Low | 12/4/2023 |
| v5.3.0 | ## What's Changed * [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/jazzband/djangorestframework-simplejwt/pull/641 * [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/jazzband/djangorestframework-simplejwt/pull/648 * Added Slovenian translations by @banDeveloper in https://github.com/jazzband/djangorestframework-simplejwt/pull/645 * [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/jazzband/djangorestframe | Low | 8/11/2023 |
| v5.2.2 | ### Major security release * Revert #605 in https://github.com/jazzband/djangorestframework-simplejwt/pull/629 * Fix typo in blacklist_app.rst by @cbscsm in https://github.com/jazzband/djangorestframework-simplejwt/pull/593 | Low | 10/20/2022 |
| v5.2.1 | ## What's Changed * Add Swedish translations by @PasinduPrabhashitha in https://github.com/jazzband/djangorestframework-simplejwt/pull/579 * Fixed issue #543 by @armenak-baburyan in https://github.com/jazzband/djangorestframework-simplejwt/pull/586 * Fix uncaught exception with JWK by @jerr0328 in https://github.com/jazzband/djangorestframework-simplejwt/pull/600 * Test on Django 4.1 by @2ykwang in https://github.com/jazzband/djangorestframework-simplejwt/pull/604 * use non-deprecated UTC | Low | 9/28/2022 |
| v5.2.0 | ## Version 5.2.0 * Remove the JWTTokenUserAuthentication from the Experimental Features #546 by @byrpatrick in https://github.com/jazzband/djangorestframework-simplejwt/pull/547 * Fix leeway type error by @2ykwang in https://github.com/jazzband/djangorestframework-simplejwt/pull/554 * Add info on TokenBlacklistView to the docs by @inti7ary in https://github.com/jazzband/djangorestframework-simplejwt/pull/558 * Update JWTStatelessUserAuthentication docs by @2ykwang in https://github.com/jaz | Low | 5/24/2022 |
| v5.1.0 | ## Version 5.1.0 * Add back support for PyJWT 1.7.1 ([#536](https://github.com/jazzband/djangorestframework-simplejwt/pull/536)) * Make the token serializer configurable ([#521](https://github.com/jazzband/djangorestframework-simplejwt/pull/521)) * Simplify using custom token classes in serializers ([#517](https://github.com/jazzband/djangorestframework-simplejwt/pull/517)) * Fix default_app_config deprecation ([#415](https://github.com/jazzband/djangorestframework-simplejwt/pull/415)) * | Low | 3/1/2022 |
| v5.0.0 | ## What's Changed * Set BLACKLIST_AFTER_ROTATION by default to False by @mohmyo in https://github.com/jazzband/djangorestframework-simplejwt/pull/455 * Repair generation of OpenAPI with Spectacular by @robrichter in https://github.com/jazzband/djangorestframework-simplejwt/pull/452 * updated import list by @rajan-blackboxes in https://github.com/jazzband/djangorestframework-simplejwt/pull/459 * Add blacklist view to log out users by @hodossy in https://github.com/jazzband/djangorestframework | Low | 10/13/2021 |
| v4.8.0 | ## Version 4.8.0 * Add integration instructions for drf-yasg ([#145](https://github.com/jazzband/djangorestframework-simplejwt/pull/145)) * Verify Serializer Should Honour Blacklist ([#239](https://github.com/jazzband/djangorestframework-simplejwt/pull/239)) * Added missing import in getting_started docs ([#431](https://github.com/jazzband/djangorestframework-simplejwt/pull/431)) * Use import_string for token_backend ([#435](https://github.com/jazzband/djangorestframework-simplejwt/pull/43 | Low | 8/19/2021 |
| v4.7.2 | https://github.com/jazzband/djangorestframework-simplejwt/blob/master/CHANGELOG.md#version-472 | Low | 7/6/2021 |
| v4.7.1 | Release v4.7.1 | Low | 5/28/2021 |
| v4.7.0 | Release v4.7.0 | Low | 5/23/2021 |