Disable strict mode for verification signers

Author: robwa

rest_registration/api/views/register.py

@@ -95,7 +95,9 @@ def process_verify_registration_data(input_data, serializer_context=None):
     serializer.is_valid(raise_exception=True)
 
     data = serializer.validated_data
-    signer = RegisterSigner(data)
+    # We use the signer only for verification, therefore we don't need a base_url and
+    # may set strict=False
+    signer = RegisterSigner(data, strict=False)
     verify_signer_or_bad_request(signer)
 
     verification_flag_field = get_user_setting('VERIFICATION_FLAG_FIELD')

rest_registration/api/views/register_email.py

@@ -100,7 +100,9 @@ def process_verify_email_data(
     serializer.is_valid(raise_exception=True)
 
     data = serializer.validated_data
-    signer = RegisterEmailSigner(data)
+    # We use the signer only for verification, therefore we don't need a base_url and
+    # may set strict=False
+    signer = RegisterEmailSigner(data, strict=False)
     verify_signer_or_bad_request(signer)
     request = serializer_context.get('request')
     new_email = data['email']

rest_registration/api/views/reset_password.py

@@ -93,7 +93,9 @@ def process_reset_password_data(input_data, serializer_context=None):
     data = serializer.validated_data.copy()
     password = data.pop('password')
     data.pop('password_confirm', None)
-    signer = ResetPasswordSigner(data)
+    # We use the signer only for verification, therefore we don't need a base_url and
+    # may set strict=False
+    signer = ResetPasswordSigner(data, strict=False)
     verify_signer_or_bad_request(signer)
 
     user = get_user_by_verification_id(data['user_id'], require_verified=False)