Delete OutstandingToken via django-admin

rest_framework_simplejwt/token_blacklist/admin.py

@@ -1,6 +1,8 @@
 from django.contrib import admin
 from django.utils.translation import gettext_lazy as _
 
+from rest_framework_simplejwt.exceptions import TokenError
+from rest_framework_simplejwt.tokens import RefreshToken
 from .models import BlacklistedToken, OutstandingToken
 
 
@@ -33,7 +35,9 @@ def get_readonly_fields(self, *args, **kwargs):
     def has_add_permission(self, *args, **kwargs):
         return False
 
-    def has_delete_permission(self, *args, **kwargs):
+    def has_delete_permission(self, request, *args, **kwargs):
+        if request.user.is_superuser:
+            return True
         return False
 
     def has_change_permission(self, request, obj=None):
@@ -42,6 +46,15 @@ def has_change_permission(self, request, obj=None):
             super().has_change_permission(request, obj)
         )
 
+    def delete_queryset(self, request, queryset):
+        for outstanding_token in queryset:
+            try:
+                token = RefreshToken(outstanding_token.token)
+                token.blacklist()
+            except TokenError:
+                pass
+        queryset.delete()
+
 
 admin.site.register(OutstandingToken, OutstandingTokenAdmin)
 

rest_framework_simplejwt/token_blacklist/models.py

@@ -3,7 +3,7 @@
 
 
 class OutstandingToken(models.Model):
-    user = models.ForeignKey(settings.AUTH_USER_MODEL, on_delete=models.CASCADE, null=True, blank=True)
+    user = models.ForeignKey(settings.AUTH_USER_MODEL, on_delete=models.SET_NULL, null=True, blank=True)
 
     jti = models.CharField(unique=True, max_length=255)
     token = models.TextField()