From 1198205de903d0535715289b63156b87fdc937ff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Dar=C3=ADo=20Lodeiros?= <dario@commitsun.com>
Date: Wed, 5 Apr 2023 12:03:21 +0200
Subject: [PATCH] [IMP]pms_api_rest: user validator back config in login
 service

---
 pms_api_rest/services/pms_login_service.py | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/pms_api_rest/services/pms_login_service.py b/pms_api_rest/services/pms_login_service.py
index 75281b875..3e7ca02df 100644
--- a/pms_api_rest/services/pms_login_service.py
+++ b/pms_api_rest/services/pms_login_service.py
@@ -32,7 +32,6 @@ class PmsLoginService(Component):
         cors="*",
     )
     def login(self, user):
-
         user_record = (
             self.env["res.users"].sudo().search([("login", "=", user.username)])
         )
@@ -47,6 +46,11 @@ class PmsLoginService(Component):
         except AccessDenied:
             raise werkzeug.exceptions.Unauthorized(_("wrong user/pass"))
 
+        validator = (
+            self.env["auth.jwt.validator"].sudo()._get_validator_by_name("api_pms")
+        )
+        assert len(validator) == 1
+
         PmsApiRestUserOutput = self.env.datamodels["pms.api.rest.user.output"]
 
         token = jwt.encode(
@@ -57,8 +61,8 @@ class PmsLoginService(Component):
                 "username": user.username,
                 "password": user.password,
             },
-            key="pms_secret_key_example",
-            algorithm=jwt.ALGORITHMS.HS256,
+            key=validator.secret_key,
+            algorithm=validator.secret_algorithm,
         )
         avail_rule_names = []
         for avail_field in user_record.availability_rule_field_ids: