一、restful

  1. pip install djangorestframework

  2.settings.py

 INSTALLED_APPS = (

     ...

     'rest_framework',

 )
 REST_FRAMEWORK = {

     # Use Django's standard `django.contrib.auth` permissions,

     # or allow read-only access for unauthenticated users.

     'DEFAULT_PERMISSION_CLASSES': [

         'rest_framework.permissions.DjangoModelPermissionsOrAnonReadOnly'

     ]

 }

  3.urls.py

 from django.conf.urls import url, include

 from django.contrib.auth.models import User

 from rest_framework import routers, serializers, viewsets

 # Serializers define the API representation.

 class UserSerializer(serializers.HyperlinkedModelSerializer):

     class Meta:

         model = User
       depth = 2

         fields = ('url', 'username', 'email', 'is_staff')

 # ViewSets define the view behavior.

 class UserViewSet(viewsets.ModelViewSet):

     queryset = User.objects.all()

     serializer_class = UserSerializer

 # Routers provide an easy way of automatically determining the URL conf.

 router = routers.DefaultRouter()

 router.register(r'users', UserViewSet)

 # Wire up our API using automatic URL routing.

 # Additionally, we include login URLs for the browsable API.

 urlpatterns = [

     url(r'^', include(router.urls)),

     url(r'^api-auth/', include('rest_framework.urls', namespace='rest_framework'))

 ]

  4.http://127.0.0.1:8000/users/

  5.自定义views

    根据上面基础,深入自定义views

 urlpatterns = [

     url(r'^', include(router.urls)),

     url(r'^eventlog_list/$', eventlog_list),

     url(r'^eventlog_detail/(\d+)/$', eventlog_detail),

     url(r'^api-auth/', include('rest_framework.urls', namespace='rest_framework'))

 ]
 @api_view(['GET', 'POST'])  #只允许POST、GET

 def eventlog_list(request):

     """

     List all snippets, or create a new snippet.

     """

     if request.method == 'GET':

         eventlogs = models.EventLog.objects.all()

         serializer = rest_searilizers.EventLogSerializer(eventlogs, many=True)

         return Response(serializer.data)

     elif request.method == 'POST':

         print("request", request.data)

         serializer =rest_searilizers.EventLogSerializer(data=request.data)

         if serializer.is_valid():

             serializer.save()

             return Response(serializer.data, status=status.HTTP_201_CREATED)

         return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)

 @api_view(['GET','PUT'])

 @csrf_exempt                     # 放开这个视图的CSRF检查

 def eventlog_detail(request, pk):

     """

     Retrieve, update or delete a code eventlog.

     """

     try:

         eventlog_obj = models.EventLog.objects.get(pk=pk)

     except models.EventLog.DoesNotExist:

         return HttpResponse(status=404)

     if request.method == 'GET':

         serializer = rest_searilizers.EventLogSerializer(eventlog_obj)

         return JsonResponse(serializer.data)

     elif request.method == 'PUT':

         print(request)

         data = JSONParser().parse(request)

         serializer = rest_searilizers.EventLogSerializer(eventlog_obj, data=data)

         if serializer.is_valid():

             serializer.save()

             return JsonResponse(serializer.data)

         return JsonResponse(serializer.errors, status=400)

     elif request.method == 'DELETE':

         eventlog_obj.delete()

         return HttpResponse(status=204)

二、自定义认证

  方式一:继承User表,一对一增加自己想要的字段

from django.contrib.auth.models import User

class UserInfo(models.Model):

    username = models.OneToOneField(User)

  方式二:继承abstractbaseuser

  1.settings.py  指定系统认证不再是User表改成UserProfile

AUTH_USER_MODEL = 'crm.UserProfile'

  2.models.py  继承基类新的User表,即UserProfile.  还有一个管理类

 from django.db import models

 # Create your models here.

 from django.contrib.auth.models import (

     BaseUserManager, AbstractBaseUser

     # BaseUserManager email规范设置和密码基本设置规则

     # AbstractBaseUser   真正的用户名 密码 验证

 )

 # ################如果用User model

 # 1、必须有一个唯一的字段可被用于识别目的

 # 2、full 和 short的名字

 # 继承AbstractBaseUser 这个是核心

 # 有了这个还必须要有一个自定管理器

 # 如果和User字段和默认的一致的话,直接使用UserManager就可以了,如果user定义了不同的字段

 # 需要自定义一个管理器,它继承BaseUserManager 并提供2个额外的方法:

 class UserProfileManager(BaseUserManager):

     def create_user(self, email, name, password=None):

         """

         Creates and saves a User with the given email, name and password.

         """

         '''email是唯一标识,没有会报错'''

         if not email:

             raise ValueError('Users must have an email address')

         user = self.model(

             email=self.normalize_email(email),  # 检查email规则

             name=name,

         )

         # AbstractBaseUser set_password == > make_password == > 加盐 hash

         user.set_password(password)     # 检测密码合理性

         user.save(using=self._db)       # 保存密码

         return user

     def create_superuser(self, email, name, password):

         """

         Creates and saves a superuser with the given email, name and password.

         """

         user = self.create_user(email,

             password=password,

             name=name

         )

         user.is_admin = True    # 比创建用户多的一个字段

         user.save(using=self._db)

         return user

 class UserProfile(AbstractBaseUser):

     email = models.EmailField(

         verbose_name='email address',

         max_length=255,

         unique=True,

     )

     name = models.CharField(max_length=32)

     is_active = models.BooleanField(default=True)

     is_admin = models.BooleanField(default=False)

     objects = UserProfileManager()        # 会用到 get_by_natural_key 不然会报

     USERNAME_FIELD = 'email'          # 默认的用户名,对于自定义的用户模型,用USERNAME_FIELD 标识

     REQUIRED_FIELDS = ['name']        # 通过createsuperuser管理命令创建一个用户时,用于提示的一个字段名称列表

     def get_full_name(self):

         # The user is identified by their email address

         return self.email

     def get_short_name(self):

         # The user is identified by their email address

         return self.email

     def __str__(self):              # __unicode__ on Python 2

         return self.email

     '''django自带后台权限控制,对哪些表有查看权限等'''

     def has_perm(self, perm, obj=None):

         "Does the user have a specific permission?"

         # Simplest possible answer: Yes, always

         return True

     '''用户是否有权限看到app'''

     def has_module_perms(self, app_label):

         "Does the user have permissions to view the app `app_label`?"

         # Simplest possible answer: Yes, always

         return True

     @property

     def is_staff(self):     # 用户管理网站权限

         "Is the user a member of staff?"

         # Simplest possible answer: All admins are staff

         return self.is_admin

  3.admin.py  能过管理管理UserProfile一些配置

 # 如果你想在admin控制台上面看到用户的表,需要在admin.py增加这些

 from crm import models

 from django import forms

 from django.contrib import admin

 from django.contrib.auth.models import Group

 from django.contrib.auth.admin import UserAdmin as BaseUserAdmin

 from django.contrib.auth.forms import ReadOnlyPasswordHashField

 from crm.models import UserProfile

 class UserCreationForm(forms.ModelForm):

     """A form for creating new users. Includes all the required

     fields, plus a repeated password."""

     password1 = forms.CharField(label='Password', widget=forms.PasswordInput)

     password2 = forms.CharField(label='Password confirmation', widget=forms.PasswordInput)

     class Meta:

         model = UserProfile

         fields = ('email', 'name')

     def clean_password2(self):

         # Check that the two password entries match

         password1 = self.cleaned_data.get("password1")

         password2 = self.cleaned_data.get("password2")

         if password1 and password2 and password1 != password2:

             raise forms.ValidationError("Passwords don't match")

         return password2

     def save(self, commit=True):

         # Save the provided password in hashed format

         user = super(UserCreationForm, self).save(commit=False)

         user.set_password(self.cleaned_data["password1"])

         if commit:

             user.save()

         return user

 class UserChangeForm(forms.ModelForm):

     """A form for updating users. Includes all the fields on

     the user, but replaces the password field with admin's

     password hash display field.

     """

     password = ReadOnlyPasswordHashField()

     class Meta:

         model = UserProfile

         fields = ('email', 'password', 'name', 'is_active', 'is_admin')

     def clean_password(self):

         # Regardless of what the user provides, return the initial value.

         # This is done here, rather than on the field, because the

         # field does not have access to the initial value

         return self.initial["password"]

 class UserAdmin(BaseUserAdmin):

     # 添加和更改用户实例的表单

     # 以前是ModelAdmin

     # The forms to add and change user instances

     form = UserChangeForm

     add_form = UserCreationForm

     # The fields to be used in displaying the User model.

     # These override the definitions on the base UserAdmin

     # that reference specific fields on auth.User.

     list_display = ('email', 'name', 'is_admin')    # 这个和以前一样,显示一条数据这3个字段

     list_filter = ('is_admin',)                     # 用这个字段过滤

     fieldsets = (                                   # 点击进入,显示详细

         ('email passwd', {'fields': ('email', 'password')}),    # email passwd是蓝色条框

         ('Personal info', {'fields': ('name',)}),

         ('Permissions', {'fields': ('is_admin',)}),

     )

     # add_fieldsets is not a standard ModelAdmin attribute. UserAdmin

     # overrides get_fieldsets to use this attribute when creating a user.

     add_fieldsets = (           # 增加用户时显示详细

         ('增加', {

             'classes': ('wide',),

             'fields': ('email', 'name', 'password1', 'password2')}

         ),

     )

     search_fields = ('email',)      # 查询字段

     ordering = ('email',)           # 排序字段

     filter_horizontal = ()          # 水平和垂直

 #

 admin.site.register(models.UserProfile, UserAdmin)

 admin.site.unregister(Group)

  

  项目:https://github.com/willianflasky/growup/tree/master/s16/homework/day24_restful/LuffyCRM

最新文章

  1. c# json总结
  2. Metro下读取txt文件
  3. HTTP 错误 500.24 - Internal Server Error的解决方法
  4. js高级程序设计(七)函数表达式
  5. Linux命令行--使用linux环境变量(转)
  6. ThinkPHP讲解(七)——修改删除
  7. 用AsyncTask 来实现下载图片在android开发中
  8. codeforces Round #347 (Div. 2) C - International Olympiad
  9. SPOJ220 Relevant Phrases of Annihilation
  10. 关于matlab中textread
  11. mysql基础示例
  12. 抽出SqlHelper
  13. Javascript arguments.callee和caller的区别
  14. Could not parse multipart servlet request; nested exception is org.apache.commons.fileupload.FileUploadBase$IOFileUploadException: Processing of multipart/form-data request failed.
  15. css的小知识4
  16. DLL导出类避免地狱问题的完美解决方案
  17. DFT scan chain
  18. flash 拾遗
  19. 每天一个linux命令:wc命令
  20. VS2010/MFC编程入门之十三(对话框:属性页对话框及相关类的介绍)

热门文章

  1. 002Jsp的内置对象
  2. aar
  3. Git-fatal: unable to access 'xxx' : Could not resolve host: xxx
  4. MemSQL start[c]up Round 1.b
  5. Django学习笔记第四篇--数据处理URL和数据库
  6. java web页面跳转 总结
  7. springboot + ApplicationListener
  8. 170327、Java微信支付中的扫码支付
  9. uitextFiled字数输入限制
  10. new 运算符创建一个用户定义的对象类型的实例或具有构造函数的内置对象的实例。