From 58270413a3cf17fa61df23f14832d96c18ffc48b Mon Sep 17 00:00:00 2001
From: Laurent <laurent@staxriver.com>
Date: Tue, 9 Jul 2024 11:29:53 +0200
Subject: [PATCH] Improvements

---
 api/views.py | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/api/views.py b/api/views.py
index 9fa736e..f08d95b 100644
--- a/api/views.py
+++ b/api/views.py
@@ -35,17 +35,21 @@ class CustomAuthToken(APIView):
                 token, created = Token.objects.get_or_create(user=user)
                 return Response({'token': token.key})
             else:
-                return Response({'error': 'Cannot log on another device'}, status=status.HTTP_403_FORBIDDEN)
+                return Response({'error': 'Vous ne pouvez pour l\'instant vous connecter sur plusieurs appareils en même temps. Veuillez vous déconnecter du précédent appareil. Autrement, veuillez contacter le support.'}, status=status.HTTP_403_FORBIDDEN)
         else:
-            return Response({'error': 'Invalid Credentials'}, status=status.HTTP_401_UNAUTHORIZED)
+            return Response({'error': 'L\'utilisateur et le mot de passe de correspondent pas'}, status=status.HTTP_401_UNAUTHORIZED)
 
 class Logout(APIView):
     permission_classes = (IsAuthenticated,)
 
     def post(self, request, *args, **kwargs):
         request.user.auth_token.delete()
-        request.user.device_id = None
-        request.user.save()
+
+        device_id = request.data.get('device_id')
+        if request.user.device_id == device_id:
+            request.user.device_id = None
+            request.user.save()
+
         return Response(status=status.HTTP_200_OK)
 
 @api_view(['GET'])