Django如何實(shí)現(xiàn)自定義用戶認(rèn)證系統(tǒng)

發(fā)布時(shí)間：2020-11-16 15:44:56 來(lái)源：億速云閱讀：382 作者：Leah 欄目：開(kāi)發(fā)技術(shù)

Django如何實(shí)現(xiàn)自定義用戶認(rèn)證系統(tǒng)？很多新手對(duì)此不是很清楚，為了幫助大家解決這個(gè)難題，下面小編將為大家詳細(xì)講解，有這方面需求的人可以來(lái)學(xué)習(xí)下，希望你能有所收獲。

自定義用戶認(rèn)證系統(tǒng)

Django 自帶的用戶認(rèn)證系統(tǒng)已經(jīng)可以滿足大部分的情況，但是有時(shí)候我們需要某些特定的需求。Django 支持使用其他認(rèn)證系統(tǒng)、也可以擴(kuò)展Django的User模塊，完全自定義新的認(rèn)證模塊。

from django.db import models
from django.contrib.auth.models import (
  BaseUserManager, AbstractBaseUser
)
class MyUserManager(BaseUserManager):
  def create_user(self, email, name, password=None):
    """
    Creates and saves a User with the given email, date of
    birth and password.
    """
    if not email:
      raise ValueError('Users must have an email address')

    user = self.model(
      email=self.normalize_email(email),
      name=name,
    )

    user.set_password(password)
    user.save(using=self._db)
    return user

  def create_superuser(self, email, name, password):
    """
    Creates and saves a superuser with the given email, date of
    birth and password.
    """
    user = self.create_user(
      email,
      password=password,
      name=name,
    )
    user.is_admin = True
    user.save(using=self._db)
    return user

class UserProfile(AbstractBaseUser):
  '''賬號(hào)表'''
  email = models.EmailField(
    verbose_name='email address',
    max_length=255,
    unique=True,
  )
  name = models.CharField(max_length=32)
  is_active = models.BooleanField(default=True)
  is_admin = models.BooleanField(default=False)

  objects = MyUserManager()

  USERNAME_FIELD = 'email'
  REQUIRED_FIELDS = ['name']

  def __str__(self):
    return self.email

  def has_perm(self, perm, obj=None):
    "Does the user have a specific permission&#63;"
    # Simplest possible answer: Yes, always
    return True

  def has_module_perms(self, app_label):
    "Does the user have permissions to view the app `app_label`&#63;"
    # Simplest possible answer: Yes, always
    return True

  @property
  def is_staff(self):
    "Is the user a member of staff&#63;"
    # Simplest possible answer: All admins are staff
    return self.is_admin

注意：email, name等字段都是可以自定義的

b、在admin.py中添加如下代碼：

from django import forms
from django.contrib import admin
from django.contrib.auth.models import Group
from django.contrib.auth.admin import UserAdmin as BaseUserAdmin
from django.contrib.auth.forms import ReadOnlyPasswordHashField

from customauth.models import MyUser


class UserCreationForm(forms.ModelForm):
  """A form for creating new users. Includes all the required
  fields, plus a repeated password."""
  password1 = forms.CharField(label='Password', widget=forms.PasswordInput)
  password2 = forms.CharField(label='Password confirmation', widget=forms.PasswordInput)

  class Meta:
    model = MyUser
    fields = ('email', 'date_of_birth')

  def clean_password2(self):
    # Check that the two password entries match
    password1 = self.cleaned_data.get("password1")
    password2 = self.cleaned_data.get("password2")
    if password1 and password2 and password1 != password2:
      raise forms.ValidationError("Passwords don't match")
    return password2

  def save(self, commit=True):
    # Save the provided password in hashed format
    user = super().save(commit=False)
    user.set_password(self.cleaned_data["password1"])
    if commit:
      user.save()
    return user


class UserChangeForm(forms.ModelForm):
  """A form for updating users. Includes all the fields on
  the user, but replaces the password field with admin's
  password hash display field.
  """
  password = ReadOnlyPasswordHashField()

  class Meta:
    model = MyUser
    fields = ('email', 'password', 'date_of_birth', 'is_active', 'is_admin')

  def clean_password(self):
    # Regardless of what the user provides, return the initial value.
    # This is done here, rather than on the field, because the
    # field does not have access to the initial value
    return self.initial["password"]


class UserAdmin(BaseUserAdmin):
  # The forms to add and change user instances
  form = UserChangeForm
  add_form = UserCreationForm

  # The fields to be used in displaying the User model.
  # These override the definitions on the base UserAdmin
  # that reference specific fields on auth.User.
  list_display = ('email', 'date_of_birth', 'is_admin')
  list_filter = ('is_admin',)
  fieldsets = (
    (None, {'fields': ('email', 'password')}),
    ('Personal info', {'fields': ('date_of_birth',)}),
    ('Permissions', {'fields': ('is_admin',)}),
  )
  # add_fieldsets is not a standard ModelAdmin attribute. UserAdmin
  # overrides get_fieldsets to use this attribute when creating a user.
  add_fieldsets = (
    (None, {
      'classes': ('wide',),
      'fields': ('email', 'date_of_birth', 'password1', 'password2')}
    ),
  )
  search_fields = ('email',)
  ordering = ('email',)
  filter_horizontal = ()

# Now register the new UserAdmin...
admin.site.register(MyUser, UserAdmin)
# ... and, since we're not using Django's built-in permissions,
# unregister the Group model from admin.
admin.site.unregister(Group)

C、在settings.py中添加配置：

AUTH_USER_MODEL = 'customauth.MyUser' #customauth指APP name, MyUser指自定義的用戶表model類
（這個(gè)時(shí)候仍然可以使用django.contrib.auth import authenticate,login,logout 等認(rèn)證方法，只是保存數(shù)據(jù)的表不一樣）

D、創(chuàng)建超級(jí)用戶

首先我們要新建一個(gè)用戶名，用來(lái)登陸管理網(wǎng)站，可以使用如下命令：

python manage.py createsuperuser

輸入想要使用的用戶名：

Username (leave blank to use 'administrator'): user01

輸入email：

Email address: (在這里輸入你的自己的郵箱帳號(hào))

輸入密碼，需要輸入兩次，并且輸入密碼時(shí)不會(huì)顯示出來(lái)：

Password:

Password (again):

當(dāng)兩次密碼都相同的時(shí)候，就會(huì)提示超級(jí)帳號(hào)創(chuàng)建成功。

Superuser created successfully.

E、使用：

用前一步創(chuàng)建的用戶，登陸后臺(tái)管理系統(tǒng)http://0.0.0.0:8081/admin/

看完上述內(nèi)容是否對(duì)您有幫助呢？如果還想對(duì)相關(guān)知識(shí)有進(jìn)一步的了解或閱讀更多相關(guān)文章，請(qǐng)關(guān)注億速云行業(yè)資訊頻道，感謝您對(duì)億速云的支持。

向AI問(wèn)一下細(xì)節(jié)

Django如何實(shí)現(xiàn)自定義用戶認(rèn)證系統(tǒng)

猜你喜歡

最新資訊

相關(guān)推薦

相關(guān)標(biāo)簽