OSMCha
diff --git a/‎config/settings/common.py
+8-6 b/‎config/settings/common.py
+8-6
diff --git a/‎osmchadjango/changeset/tasks.py
+12-9 b/‎osmchadjango/changeset/tasks.py
+12-9
diff --git a/‎osmchadjango/changeset/tests/test_add_feature_views.py
+4-4 b/‎osmchadjango/changeset/tests/test_add_feature_views.py
+4-4
diff --git a/‎osmchadjango/changeset/tests/test_changeset_views.py
+23-29 b/‎osmchadjango/changeset/tests/test_changeset_views.py
+23-29
@@ -254,14 +254,16 @@
 SOCIAL_AUTH_DEFAULT_USERNAME = lambda u: slugify(u)
 SOCIAL_AUTH_ASSOCIATE_BY_EMAIL = True
 
-SOCIAL_AUTH_OPENSTREETMAP_KEY = env('OAUTH_OSM_KEY', default='')
-SOCIAL_AUTH_OPENSTREETMAP_SECRET = env('OAUTH_OSM_SECRET', default='')
+SOCIAL_AUTH_OPENSTREETMAP_OAUTH2_KEY = env("OAUTH2_OSM_KEY", default="")
+SOCIAL_AUTH_OPENSTREETMAP_OAUTH2_SECRET = env("OAUTH2_OSM_SECRET", default="")
+SOCIAL_AUTH_OPENSTREETMAP_OAUTH2_SCOPE = ["read_prefs",  "write_api"]
+SOCIAL_AUTH_OPENSTREETMAP_OAUTH2_USE_PKCE = False
 
 # AUTHENTICATION CONFIGURATION
 # ------------------------------------------------------------------------------
 AUTHENTICATION_BACKENDS = (
-    'social_core.backends.openstreetmap.OpenStreetMapOAuth',
-    'django.contrib.auth.backends.ModelBackend',
+    "social_core.backends.openstreetmap_oauth2.OpenStreetMapOAuth2",
+    "django.contrib.auth.backends.ModelBackend",
 )
 
 SOCIAL_AUTH_PIPELINE = (
@@ -372,7 +374,7 @@
 # in OSM website
 OAUTH_REDIRECT_URI = env(
     'OAUTH_REDIRECT_URI',
-    default='http://localhost:8000/oauth-landing.html'
+    default='http://127.0.0.1:3000/oauth-landing.html'
     )
 
-OSMCHA_URL = env('OSMCHA_URL', default='https://osmcha.org')
+OSMCHA_URL = env('OSMCHA_URL', default='https://osmcha.org')
@@ -13,7 +13,7 @@
 from django.db.utils import IntegrityError
 
 import requests
-from requests_oauthlib import OAuth1Session
+from requests_oauthlib import OAuth2Session
 from osmcha.changeset import Analyse, ChangesetList
 
 from .models import Changeset, SuspicionReasons, Import
@@ -119,21 +119,24 @@ class ChangesetCommentAPI(object):
 
     def __init__(self, user, changeset_id):
         self.changeset_id = changeset_id
-        user_token = user.social_auth.all().first().access_token
-        self.client = OAuth1Session(
-            settings.SOCIAL_AUTH_OPENSTREETMAP_KEY,
-            client_secret=settings.SOCIAL_AUTH_OPENSTREETMAP_SECRET,
-            resource_owner_key=user_token["oauth_token"],
-            resource_owner_secret=user_token["oauth_token_secret"],
+        user_token = user.social_auth.all().first().extra_data
+        user_token['token_type'] = 'Bearer'
+        self.client = OAuth2Session(
+            settings.SOCIAL_AUTH_OPENSTREETMAP_OAUTH2_KEY,
+            token=user_token,
         )
         self.url = "{}/api/0.6/changeset/{}/comment/".format(
             settings.OSM_SERVER_URL, changeset_id
         )
 
     def post_comment(self, message=None):
         """Post comment to changeset."""
-        response = self.client.post(
-            self.url, data="text={}".format(quote(message)).encode("utf-8")
+        response = self.client.request(
+            'POST',
+            self.url,
+            data="text={}".format(quote(message)).encode("utf-8"),
+            client_id=settings.SOCIAL_AUTH_OPENSTREETMAP_OAUTH2_KEY,
+            client_secret=settings.SOCIAL_AUTH_OPENSTREETMAP_OAUTH2_SECRET
         )
         if response.status_code == 200:
             print(
 
@@ -29,7 +29,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123'
             )
 
@@ -41,7 +41,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.staff_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='443324'
             )
 
@@ -327,7 +327,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.token = Token.objects.create(user=self.user)
@@ -370,7 +370,7 @@ def test_is_not_staff_user_request(self):
             )
         UserSocialAuth.objects.create(
             user=user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='444444',
             )
         token = Token.objects.create(user=user)
 
@@ -30,7 +30,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.url = reverse('changeset:list')
@@ -313,7 +313,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.client.login(username=self.user.username, password='password')
@@ -369,7 +369,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.client.login(username=self.user.username, password='password')
@@ -509,7 +509,7 @@ def test_authenticated_changeset_detail_response(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.client.login(username=self.user.username, password='password')
@@ -535,7 +535,7 @@ def test_changeset_detail_response_with_staff_user(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.client.login(username=self.user.username, password='password')
@@ -564,7 +564,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.admin_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.user = User.objects.create_user(
@@ -574,7 +574,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='234312',
             )
         self.reason_1 = SuspicionReasons.objects.create(name='possible import')
@@ -724,14 +724,11 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             extra_data={
                 'id': '123123',
-                'access_token': {
-                    'oauth_token': 'aaaa',
-                    'oauth_token_secret': 'bbbb'
-                    }
+                'access_token': '1shjasgw'
                 }
             )
         self.tag_1 = TagFactory(name='Illegal import')
@@ -980,14 +977,11 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             extra_data={
                 'id': '123123',
-                'access_token': {
-                    'oauth_token': 'aaaa',
-                    'oauth_token_secret': 'bbbb'
-                    }
+                'access_token': 'ajhsjhags'
                 }
             )
         self.suspect_changeset = SuspectChangesetFactory()
@@ -1072,7 +1066,7 @@ def test_staff_user_uncheck_any_changeset(self):
             )
         UserSocialAuth.objects.create(
             user=staff_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='87873',
             )
         self.client.login(username=staff_user.username, password='password')
@@ -1101,7 +1095,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='999',
             )
         self.changeset_user = User.objects.create_user(
@@ -1111,7 +1105,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.changeset_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.changeset = ChangesetFactory()
@@ -1183,7 +1177,7 @@ def test_other_user_can_not_add_tag_to_checked_changeset(self):
             )
         UserSocialAuth.objects.create(
             user=other_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='28763',
             )
         self.client.login(username=other_user.username, password='password')
@@ -1203,7 +1197,7 @@ def test_staff_user_add_tag_to_checked_changeset(self):
             )
         UserSocialAuth.objects.create(
             user=staff_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='28763',
             )
         self.client.login(username=staff_user.username, password='password')
@@ -1224,7 +1218,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='999',
             )
         self.changeset_user = User.objects.create_user(
@@ -1234,7 +1228,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.changeset_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
         self.changeset = ChangesetFactory()
@@ -1298,7 +1292,7 @@ def test_other_user_can_not_remove_tag_to_checked_changeset(self):
             )
         UserSocialAuth.objects.create(
             user=other_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='28763',
             )
         self.client.login(username=other_user.username, password='password')
@@ -1318,7 +1312,7 @@ def test_staff_user_remove_tag_to_checked_changeset(self):
             )
         UserSocialAuth.objects.create(
             user=staff_user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='28763',
             )
         self.client.login(username=staff_user.username, password='password')
@@ -1341,7 +1335,7 @@ def setUp(self):
             )
         UserSocialAuth.objects.create(
             user=self.user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='123123',
             )
 
@@ -1390,7 +1384,7 @@ def test_set_good_by_staff_user(self):
             )
         UserSocialAuth.objects.create(
             user=user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='8987',
             )
         self.client.login(username=user.username, password='password')
@@ -1411,7 +1405,7 @@ def test_set_harmful_by_staff_user(self):
             )
         UserSocialAuth.objects.create(
             user=user,
-            provider='openstreetmap',
+            provider='openstreetmap-oauth2',
             uid='8987',
             )
         self.client.login(username=user.username, password='password')
Original file line number	Diff line number	Diff line change
`@@ -29,7 +29,7 @@ def setUp(self):`
`29`	`29`	`)`
`30`	`30`	`UserSocialAuth.objects.create(`
`31`	`31`	`user=self.user,`
`32`		`- provider='openstreetmap',`
	`32`	`+ provider='openstreetmap-oauth2',`
`33`	`33`	`uid='123123'`
`34`	`34`	`)`
`35`	`35`
`@@ -41,7 +41,7 @@ def setUp(self):`
`41`	`41`	`)`
`42`	`42`	`UserSocialAuth.objects.create(`
`43`	`43`	`user=self.staff_user,`
`44`		`- provider='openstreetmap',`
	`44`	`+ provider='openstreetmap-oauth2',`
`45`	`45`	`uid='443324'`
`46`	`46`	`)`
`47`	`47`
`@@ -327,7 +327,7 @@ def setUp(self):`
`327`	`327`	`)`
`328`	`328`	`UserSocialAuth.objects.create(`
`329`	`329`	`user=self.user,`
`330`		`- provider='openstreetmap',`
	`330`	`+ provider='openstreetmap-oauth2',`
`331`	`331`	`uid='123123',`
`332`	`332`	`)`
`333`	`333`	`self.token = Token.objects.create(user=self.user)`
`@@ -370,7 +370,7 @@ def test_is_not_staff_user_request(self):`
`370`	`370`	`)`
`371`	`371`	`UserSocialAuth.objects.create(`
`372`	`372`	`user=user,`
`373`		`- provider='openstreetmap',`
	`373`	`+ provider='openstreetmap-oauth2',`
`374`	`374`	`uid='444444',`
`375`	`375`	`)`
`376`	`376`	`token = Token.objects.create(user=user)`
Original file line number	Diff line number	Diff line change
`@@ -30,7 +30,7 @@ def setUp(self):`
`30`	`30`	`)`
`31`	`31`	`UserSocialAuth.objects.create(`
`32`	`32`	`user=self.user,`
`33`		`- provider='openstreetmap',`
	`33`	`+ provider='openstreetmap-oauth2',`
`34`	`34`	`uid='123123',`
`35`	`35`	`)`
`36`	`36`	`self.url = reverse('changeset:list')`
`@@ -313,7 +313,7 @@ def setUp(self):`
`313`	`313`	`)`
`314`	`314`	`UserSocialAuth.objects.create(`
`315`	`315`	`user=self.user,`
`316`		`- provider='openstreetmap',`
	`316`	`+ provider='openstreetmap-oauth2',`
`317`	`317`	`uid='123123',`
`318`	`318`	`)`
`319`	`319`	`self.client.login(username=self.user.username, password='password')`
`@@ -369,7 +369,7 @@ def setUp(self):`
`369`	`369`	`)`
`370`	`370`	`UserSocialAuth.objects.create(`
`371`	`371`	`user=self.user,`
`372`		`- provider='openstreetmap',`
	`372`	`+ provider='openstreetmap-oauth2',`
`373`	`373`	`uid='123123',`
`374`	`374`	`)`
`375`	`375`	`self.client.login(username=self.user.username, password='password')`
`@@ -509,7 +509,7 @@ def test_authenticated_changeset_detail_response(self):`
`509`	`509`	`)`
`510`	`510`	`UserSocialAuth.objects.create(`
`511`	`511`	`user=self.user,`
`512`		`- provider='openstreetmap',`
	`512`	`+ provider='openstreetmap-oauth2',`
`513`	`513`	`uid='123123',`
`514`	`514`	`)`
`515`	`515`	`self.client.login(username=self.user.username, password='password')`
`@@ -535,7 +535,7 @@ def test_changeset_detail_response_with_staff_user(self):`
`535`	`535`	`)`
`536`	`536`	`UserSocialAuth.objects.create(`
`537`	`537`	`user=self.user,`
`538`		`- provider='openstreetmap',`
	`538`	`+ provider='openstreetmap-oauth2',`
`539`	`539`	`uid='123123',`
`540`	`540`	`)`
`541`	`541`	`self.client.login(username=self.user.username, password='password')`
`@@ -564,7 +564,7 @@ def setUp(self):`
`564`	`564`	`)`
`565`	`565`	`UserSocialAuth.objects.create(`
`566`	`566`	`user=self.admin_user,`
`567`		`- provider='openstreetmap',`
	`567`	`+ provider='openstreetmap-oauth2',`
`568`	`568`	`uid='123123',`
`569`	`569`	`)`
`570`	`570`	`self.user = User.objects.create_user(`
`@@ -574,7 +574,7 @@ def setUp(self):`
`574`	`574`	`)`
`575`	`575`	`UserSocialAuth.objects.create(`
`576`	`576`	`user=self.user,`
`577`		`- provider='openstreetmap',`
	`577`	`+ provider='openstreetmap-oauth2',`
`578`	`578`	`uid='234312',`
`579`	`579`	`)`
`580`	`580`	`self.reason_1 = SuspicionReasons.objects.create(name='possible import')`
`@@ -724,14 +724,11 @@ def setUp(self):`
`724`	`724`	`)`
`725`	`725`	`UserSocialAuth.objects.create(`
`726`	`726`	`user=self.user,`
`727`		`- provider='openstreetmap',`
	`727`	`+ provider='openstreetmap-oauth2',`
`728`	`728`	`uid='123123',`
`729`	`729`	`extra_data={`
`730`	`730`	`'id': '123123',`
`731`		`- 'access_token': {`
`732`		`- 'oauth_token': 'aaaa',`
`733`		`- 'oauth_token_secret': 'bbbb'`
`734`		`- }`
	`731`	`+ 'access_token': '1shjasgw'`
`735`	`732`	`}`
`736`	`733`	`)`
`737`	`734`	`self.tag_1 = TagFactory(name='Illegal import')`
`@@ -980,14 +977,11 @@ def setUp(self):`
`980`	`977`	`)`
`981`	`978`	`UserSocialAuth.objects.create(`
`982`	`979`	`user=self.user,`
`983`		`- provider='openstreetmap',`
	`980`	`+ provider='openstreetmap-oauth2',`
`984`	`981`	`uid='123123',`
`985`	`982`	`extra_data={`
`986`	`983`	`'id': '123123',`
`987`		`- 'access_token': {`
`988`		`- 'oauth_token': 'aaaa',`
`989`		`- 'oauth_token_secret': 'bbbb'`
`990`		`- }`
	`984`	`+ 'access_token': 'ajhsjhags'`
`991`	`985`	`}`
`992`	`986`	`)`
`993`	`987`	`self.suspect_changeset = SuspectChangesetFactory()`
`@@ -1072,7 +1066,7 @@ def test_staff_user_uncheck_any_changeset(self):`
`1072`	`1066`	`)`
`1073`	`1067`	`UserSocialAuth.objects.create(`
`1074`	`1068`	`user=staff_user,`
`1075`		`- provider='openstreetmap',`
	`1069`	`+ provider='openstreetmap-oauth2',`
`1076`	`1070`	`uid='87873',`
`1077`	`1071`	`)`
`1078`	`1072`	`self.client.login(username=staff_user.username, password='password')`
`@@ -1101,7 +1095,7 @@ def setUp(self):`
`1101`	`1095`	`)`
`1102`	`1096`	`UserSocialAuth.objects.create(`
`1103`	`1097`	`user=self.user,`
`1104`		`- provider='openstreetmap',`
	`1098`	`+ provider='openstreetmap-oauth2',`
`1105`	`1099`	`uid='999',`
`1106`	`1100`	`)`
`1107`	`1101`	`self.changeset_user = User.objects.create_user(`
`@@ -1111,7 +1105,7 @@ def setUp(self):`
`1111`	`1105`	`)`
`1112`	`1106`	`UserSocialAuth.objects.create(`
`1113`	`1107`	`user=self.changeset_user,`
`1114`		`- provider='openstreetmap',`
	`1108`	`+ provider='openstreetmap-oauth2',`
`1115`	`1109`	`uid='123123',`
`1116`	`1110`	`)`
`1117`	`1111`	`self.changeset = ChangesetFactory()`
`@@ -1183,7 +1177,7 @@ def test_other_user_can_not_add_tag_to_checked_changeset(self):`
`1183`	`1177`	`)`
`1184`	`1178`	`UserSocialAuth.objects.create(`
`1185`	`1179`	`user=other_user,`
`1186`		`- provider='openstreetmap',`
	`1180`	`+ provider='openstreetmap-oauth2',`
`1187`	`1181`	`uid='28763',`
`1188`	`1182`	`)`
`1189`	`1183`	`self.client.login(username=other_user.username, password='password')`
`@@ -1203,7 +1197,7 @@ def test_staff_user_add_tag_to_checked_changeset(self):`
`1203`	`1197`	`)`
`1204`	`1198`	`UserSocialAuth.objects.create(`
`1205`	`1199`	`user=staff_user,`
`1206`		`- provider='openstreetmap',`
	`1200`	`+ provider='openstreetmap-oauth2',`
`1207`	`1201`	`uid='28763',`
`1208`	`1202`	`)`
`1209`	`1203`	`self.client.login(username=staff_user.username, password='password')`
`@@ -1224,7 +1218,7 @@ def setUp(self):`
`1224`	`1218`	`)`
`1225`	`1219`	`UserSocialAuth.objects.create(`
`1226`	`1220`	`user=self.user,`
`1227`		`- provider='openstreetmap',`
	`1221`	`+ provider='openstreetmap-oauth2',`
`1228`	`1222`	`uid='999',`
`1229`	`1223`	`)`
`1230`	`1224`	`self.changeset_user = User.objects.create_user(`
`@@ -1234,7 +1228,7 @@ def setUp(self):`
`1234`	`1228`	`)`
`1235`	`1229`	`UserSocialAuth.objects.create(`
`1236`	`1230`	`user=self.changeset_user,`
`1237`		`- provider='openstreetmap',`
	`1231`	`+ provider='openstreetmap-oauth2',`
`1238`	`1232`	`uid='123123',`
`1239`	`1233`	`)`
`1240`	`1234`	`self.changeset = ChangesetFactory()`
`@@ -1298,7 +1292,7 @@ def test_other_user_can_not_remove_tag_to_checked_changeset(self):`
`1298`	`1292`	`)`
`1299`	`1293`	`UserSocialAuth.objects.create(`
`1300`	`1294`	`user=other_user,`
`1301`		`- provider='openstreetmap',`
	`1295`	`+ provider='openstreetmap-oauth2',`
`1302`	`1296`	`uid='28763',`
`1303`	`1297`	`)`
`1304`	`1298`	`self.client.login(username=other_user.username, password='password')`
`@@ -1318,7 +1312,7 @@ def test_staff_user_remove_tag_to_checked_changeset(self):`
`1318`	`1312`	`)`
`1319`	`1313`	`UserSocialAuth.objects.create(`
`1320`	`1314`	`user=staff_user,`
`1321`		`- provider='openstreetmap',`
	`1315`	`+ provider='openstreetmap-oauth2',`
`1322`	`1316`	`uid='28763',`
`1323`	`1317`	`)`
`1324`	`1318`	`self.client.login(username=staff_user.username, password='password')`
`@@ -1341,7 +1335,7 @@ def setUp(self):`
`1341`	`1335`	`)`
`1342`	`1336`	`UserSocialAuth.objects.create(`
`1343`	`1337`	`user=self.user,`
`1344`		`- provider='openstreetmap',`
	`1338`	`+ provider='openstreetmap-oauth2',`
`1345`	`1339`	`uid='123123',`
`1346`	`1340`	`)`
`1347`	`1341`
`@@ -1390,7 +1384,7 @@ def test_set_good_by_staff_user(self):`
`1390`	`1384`	`)`
`1391`	`1385`	`UserSocialAuth.objects.create(`
`1392`	`1386`	`user=user,`
`1393`		`- provider='openstreetmap',`
	`1387`	`+ provider='openstreetmap-oauth2',`
`1394`	`1388`	`uid='8987',`
`1395`	`1389`	`)`
`1396`	`1390`	`self.client.login(username=user.username, password='password')`
`@@ -1411,7 +1405,7 @@ def test_set_harmful_by_staff_user(self):`
`1411`	`1405`	`)`
`1412`	`1406`	`UserSocialAuth.objects.create(`
`1413`	`1407`	`user=user,`
`1414`		`- provider='openstreetmap',`
	`1408`	`+ provider='openstreetmap-oauth2',`
`1415`	`1409`	`uid='8987',`
`1416`	`1410`	`)`
`1417`	`1411`	`self.client.login(username=user.username, password='password')`