FastAPI + Vue
相当于这篇文章的翻译:
https://testdriven.io/blog/developing-a-single-page-app-with-fastapi-and-vuejs/
源码地址:https://github.com/testdrivenio/fastapi-vue
一、后端
1. FastAPI Setup
1、新建一个project:backend
backend/main.py 增加一个测试路由
from fastapi import FastAPI
app = FastAPI()
@app.get("/")
def home():
return "Hello, World!"
if __name__ == '__main__':
import uvicorn
uvicorn.run(app,port=8082)
添加CORS中间件
from fastapi import FastAPI
from fastapi.middleware.cors import CORSMiddleware # NEW
app = FastAPI()
# NEW
app.add_middleware(
CORSMiddleware,
allow_origins=["http://localhost:8080"],
allow_credentials=True,
allow_methods=["*"],
allow_headers=["*"],
)
@app.get("/")
def home():
return "Hello, World!"
2、创建、激活虚拟环境
virtualenv -p E:\Anaconda3\python.exe myenv
cd myenv/Scripts
activate
3、安装依赖
aerich==0.7.1
asyncpg==0.27.0
bcrypt==4.0.1
passlib==1.7.4
fastapi==0.88.0
python-jose==3.3.0
python-multipart==0.0.5
tortoise-orm==0.19.2
uvicorn==0.20.0
2. Models and Migrations
1、创建model
backend/database/models.py
from tortoise import fields, models
class Users(models.Model):
id = fields.IntField(pk=True)
username = fields.CharField(max_length=20, unique=True)
full_name = fields.CharField(max_length=50, null=True)
password = fields.CharField(max_length=128, null=True)
created_at = fields.DatetimeField(auto_now_add=True)
modified_at = fields.DatetimeField(auto_now=True)
class Notes(models.Model):
id = fields.IntField(pk=True)
title = fields.CharField(max_length=225)
content = fields.TextField()
author = fields.ForeignKeyField("models.Users", related_name="note")
created_at = fields.DatetimeField(auto_now_add=True)
modified_at = fields.DatetimeField(auto_now=True)
def __str__(self):
return f"{self.title}, {self.author_id} on {self.created_at}"
user和note为1对多的映射关系
2、数据库迁移配置
database/config.py
DATABASE_URL = "mysql://root:tzkj123456@127.0.0.1:3306/java?charset=utf8mb4"
TORTOISE_ORM = {
"connections": {"default": DATABASE_URL},
"apps": {
"models": {
"models": [
"database.models", "aerich.models"
],
"default_connection": "default"
}
}
}
注册model:users和notes
注册aerich.models,生成migration metadata
使用下面命令完成表构建和数据库迁移
aerich init -t database.config.TORTOISE_ORM
aerich init-db
首先告诉 Aerich 来初始化models 和 database的关联关系。创建 /backend/pyproject.toml* [config file] and a "services/backend/migrations" 文件夹
然后生成 users, notes, and aerich 三个model对应的迁移文件,并在mysql中创建三个表。 "services/backend/migrations/models"。
3. CRUD
1、定义schemas
/schemas/users.py
from tortoise.contrib.pydantic import pydantic_model_creator
from src.database.models import Users
UserInSchema = pydantic_model_creator(
Users, name="UserIn", exclude_readonly=True
)
UserOutSchema = pydantic_model_creator(
Users, name="UserOut", exclude=["password", "created_at", "modified_at"]
)
UserDatabaseSchema = pydantic_model_creator(
Users, name="User", exclude=["created_at", "modified_at"]
)
pydantic_model_creator is a Tortoise helper that allows us to create pydantic models from Tortoise models, which we'll use to create and retrieve database records. It takes in the Users
model and a name
. You can also exclude
specific columns.
/schemas/notes.py
from typing import Optional
from pydantic import BaseModel
from tortoise.contrib.pydantic import pydantic_model_creator
from src.database.models import Notes
NoteInSchema = pydantic_model_creator(
Notes, name="NoteIn", exclude=["author_id"], exclude_readonly=True)
NoteOutSchema = pydantic_model_creator(
Notes, name="Note", exclude =[
"modified_at", "author.password", "author.created_at", "author.modified_at"
]
)
class UpdateNote(BaseModel):
title: Optional[str]
content: Optional[str]
2、crud
/crud/users.py
from fastapi import HTTPException
from passlib.context import CryptContext
from tortoise.exceptions import DoesNotExist, IntegrityError
from src.database.models import Users
from src.schemas.users import UserOutSchema
pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
async def create_user(user) -> UserOutSchema:
user.password = pwd_context.encrypt(user.password)
try:
user_obj = await Users.create(**user.dict(exclude_unset=True))
except IntegrityError:
raise HTTPException(status_code=401, detail=f"Sorry, that username already exists.")
return await UserOutSchema.from_tortoise_orm(user_obj)
async def delete_user(user_id, current_user):
try:
db_user = await UserOutSchema.from_queryset_single(Users.get(id=user_id))
except DoesNotExist:
raise HTTPException(status_code=404, detail=f"User {user_id} not found")
if db_user.id == current_user.id:
deleted_count = await Users.filter(id=user_id).delete()
if not deleted_count:
raise HTTPException(status_code=404, detail=f"User {user_id} not found")
return f"Deleted user {user_id}"
raise HTTPException(status_code=403, detail=f"Not authorized to delete")
/crud/notes.py
from fastapi import HTTPException
from tortoise.exceptions import DoesNotExist
from src.database.models import Notes
from src.schemas.notes import NoteOutSchema
async def get_notes():
return await NoteOutSchema.from_queryset(Notes.all())
async def get_note(note_id) -> NoteOutSchema:
return await NoteOutSchema.from_queryset_single(Notes.get(id=note_id))
async def create_note(note, current_user) -> NoteOutSchema:
note_dict = note.dict(exclude_unset=True)
note_dict["author_id"] = current_user.id
note_obj = await Notes.create(**note_dict)
return await NoteOutSchema.from_tortoise_orm(note_obj)
async def update_note(note_id, note, current_user) -> NoteOutSchema:
try:
db_note = await NoteOutSchema.from_queryset_single(Notes.get(id=note_id))
except DoesNotExist:
raise HTTPException(status_code=404, detail=f"Note {note_id} not found")
if db_note.author.id == current_user.id:
await Notes.filter(id=note_id).update(**note.dict(exclude_unset=True))
return await NoteOutSchema.from_queryset_single(Notes.get(id=note_id))
raise HTTPException(status_code=403, detail=f"Not authorized to update")
async def delete_note(note_id, current_user):
try:
db_note = await NoteOutSchema.from_queryset_single(Notes.get(id=note_id))
except DoesNotExist:
raise HTTPException(status_code=404, detail=f"Note {note_id} not found")
if db_note.author.id == current_user.id:
deleted_count = await Notes.filter(id=note_id).delete()
if not deleted_count:
raise HTTPException(status_code=404, detail=f"Note {note_id} not found")
return f"Deleted note {note_id}"
raise HTTPException(status_code=403, detail=f"Not authorized to delete")
3. 修改main.py
read the relationship between our models
from fastapi import FastAPI
from fastapi.middleware.cors import CORSMiddleware
from tortoise import Tortoise # NEW
from src.database.register import register_tortoise
from src.database.config import TORTOISE_ORM
# enable schemas to read relationship between models
Tortoise.init_models(["database.models"], "models") # NEW
app = FastAPI()
app.add_middleware(
CORSMiddleware,
allow_origins=["http://localhost:8080"],
allow_credentials=True,
allow_methods=["*"],
allow_headers=["*"],
)
register_tortoise(app, config=TORTOISE_ORM, generate_schemas=False)
@app.get("/")
def home():
return "Hello, World!"
4. JWT Authentication
1、schemas
/schemas/token.py
from typing import Optional
from pydantic import BaseModel
class TokenData(BaseModel):
username: Optional[str] = None
class Status(BaseModel):
message: str
2、token相关操作
/auth/jwthandler.py
import os
from datetime import datetime, timedelta
from typing import Optional
from fastapi import Depends, HTTPException, Request
from fastapi.openapi.models import OAuthFlows as OAuthFlowsModel
from fastapi.security import OAuth2
from fastapi.security.utils import get_authorization_scheme_param
from jose import JWTError, jwt
from tortoise.exceptions import DoesNotExist
from schemas.token import TokenData
from schemas.users import UserOutSchema
from database.models import Users
#SECRET_KEY = os.environ.get("SECRET_KEY") # openssl rand -hex 32
SECRET_KEY = "e46fa424970b5a0f9bd7cae4316f126536f68388024aea433311072d320994e4"
ALGORITHM = "HS256"
ACCESS_TOKEN_EXPIRE_MINUTES = 30
class OAuth2PasswordBearerCookie(OAuth2):
"""
基于OAuth2的身份验证
相当于重写了OAuth2PasswordBearer类
"""
def __init__(
self,
token_url: str,
scheme_name: str = None,
scopes: dict = None,
auto_error: bool = True,
):
if not scopes:
scopes = {}
flows = OAuthFlowsModel(password={"tokenUrl": token_url, "scopes": scopes})
super().__init__(flows=flows, scheme_name=scheme_name, auto_error=auto_error)
async def __call__(self, request: Request) -> Optional[str]:
authorization: str = request.cookies.get("Authorization")
scheme, param = get_authorization_scheme_param(authorization)
if not authorization or scheme.lower() != "bearer":
if self.auto_error:
raise HTTPException(
status_code=401,
detail="Not authenticated",
headers={"WWW-Authenticate": "Bearer"},
)
else:
return None
return param
security = OAuth2PasswordBearerCookie(token_url="/login")
# 其等价于: OAuth2PasswordBearer(token_url="/login") 区别在于自定义的使用了cookie中的参数。原始的使用了header中的参数
# Auth2PasswordBearer 并不会创建相应的 URL 路径操作,只是指明了客户端用来获取 token 的目标 URL
def create_access_token(data: dict, expires_delta: Optional[timedelta] = None):
"""
基于jwt生成token。需要3个参数:data,需要基于哪些数据进行加密;密钥;加密算法。
:param data:
:param expires_delta:
:return:
"""
to_encode = data.copy()
if expires_delta:
expire = datetime.utcnow() + expires_delta
else:
expire = datetime.utcnow() + timedelta(minutes=15)
to_encode.update({"exp": expire})
encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
return encoded_jwt
async def get_current_user(token: str = Depends(security)):
"""
查询用户然后转换为pydantic对象输出
:param token:
:return:
"""
credentials_exception = HTTPException(
status_code=401,
detail="Could not validate credentials",
headers={"WWW-Authenticate": "Bearer"},
)
print(token)
try:
# 定式,解码,然后get("sub")
payload = jwt.decode(token, SECRET_KEY, algorithms=[ALGORITHM])
username: str = payload.get("sub")
if username is None:
raise credentials_exception
token_data = TokenData(username=username)
except JWTError:
raise credentials_exception
try:
user = await UserOutSchema.from_queryset_single(
Users.get(username=token_data.username)
)
except DoesNotExist:
raise credentials_exception
return user
OAuth2PasswordBearerCookie
is a class that inherits from the OAuth2
class that is used for reading the cookie sent in the request header for protected routes. It ensures that the cookie is present and then returns the token from the cookie.
- 客户端发送请求的时候,FastAPI 会检查请求的 Authorization 头信息,如果没有找到 Authorization 头信息
- 或者头信息的内容不是 Bearer token,它会返回 401 状态码( UNAUTHORIZED )
/auth/users.py
from fastapi import HTTPException,Depends,status
from fastapi.security import OAuth2PasswordRequestForm
from passlib.context import CryptContext
from tortoise.exceptions import DoesNotExist
from database.models import Users
from schemas.users import UserDatabaseSchema
pwd_context = CryptContext(schemes=["bcrypt"],deprecated="auto")
def verify_password(plain_password,hashed_password):
return pwd_context.verify(plain_password,hashed_password)
def get_password_hash(password):
return pwd_context.hash(password)
async def get_user(username:str):
return await UserDatabaseSchema.from_queryset_single(Users.get(username=username))
async def validate_user(user:OAuth2PasswordRequestForm=Depends()):
try:
db_user = await get_user(user.username)
except DoesNotExist:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Incorrect username or password"
)
if not verify_password(user.password,db_user.password):
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Incorrect username or password"
)
return db_user
3、修改crud
在删除操作的返回里,由返回字符串,改为返回Status对象
/crud/user.py
...
return Status(message=f"Deleted user {user_id}")
5. Routing
设置路由,将 pydantic models, CRUD , JWT 组合在一起
1、users路由
/routes/users.py
from datetime import timedelta
from fastapi import APIRouter, Depends, HTTPException, status
from fastapi.encoders import jsonable_encoder
from fastapi.responses import JSONResponse
from fastapi.security import OAuth2PasswordRequestForm
from tortoise.contrib.fastapi import HTTPNotFoundError
import crud.users as crud
from auth.users import validate_user
from schemas.token import Status
from schemas.users import UserInSchema, UserOutSchema
from auth.jwthandler import (
create_access_token,
get_current_user,
ACCESS_TOKEN_EXPIRE_MINUTES,
)
router = APIRouter()
@router.post("/register",response_model=UserOutSchema)
async def create_user(user:UserInSchema)->UserOutSchema:
return await crud.create_user(user)
@router.post("/login")
async def login(user:OAuth2PasswordRequestForm=Depends()):
"""
用户登录分为:
1.验证用户
2.生成token
3.将token放到cookie里
:param user:
:return:
"""
user = await validate_user(user)
if not user:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Incorrect username or password",
headers={"WWW-Authenticate": "Bearer"},
)
access_token_expires = timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES)
access_token = create_access_token(data={"sub":user.username},
expires_delta = access_token_expires
)
token = jsonable_encoder(access_token)
content = {"message": "You've successfully logged in. Welcome back!"}
response = JSONResponse(content=content)
response.set_cookie(
"Authorization",
value=f"Bearer {token}",
httponly=True,
max_age=1800,
expires=1800,
samesite="lax",
secure=False,
)
return response
@router.get(
"/users/whoami", response_model=UserOutSchema, dependencies=[Depends(get_current_user)]
)
async def read_users_me(current_user: UserOutSchema = Depends(get_current_user)):
return current_user
@router.delete(
"/user/{user_id}",
response_model=Status,
responses={404: {"model": HTTPNotFoundError}},
dependencies=[Depends(get_current_user)],
)
async def delete_user(
user_id: int, current_user: UserOutSchema = Depends(get_current_user)
) -> Status:
return await crud.delete_user(user_id, current_user)
get_current_user 依赖注入,保证相关操作是用户登录模式
/register 直接调用crud的增加用户方法,完成用户注册
/login 接收包含用户名和密码的表单数据,创建token,并在cookie中返回该token
/users/whoami 返回当前登录的用户信息
/user/{user_id} 删除用户,也使用get_current_user依赖。
关于set_cookie参数
- The name of the cookie is
Authorization
with a value ofBearer {token}
, withtoken
being the actual token. It expires after 1800 seconds (30 minutes). - httponly is set to
True
for security purposes so that client-side scripts won't be able to access the cookie. This helps prevent Cross Site Scripting (XSS) attacks. - With samesite set to
Lax
, the browser only sends cookies on some HTTP requests. This helps prevent Cross Site Request Forgery (CSRF) attacks. - Finally,
secure
is set toFalse
since we'll be testing locally, without HTTPS. Make sure to set this toTrue
in production.
2、notes路由
/routes/notes.py
from typing import List
from fastapi import APIRouter, Depends, HTTPException
from tortoise.contrib.fastapi import HTTPNotFoundError
from tortoise.exceptions import DoesNotExist
import crud.notes as crud
from auth.jwthandler import get_current_user
from schemas.notes import NoteOutSchema, NoteInSchema, UpdateNote
from schemas.token import Status
from schemas.users import UserOutSchema
router = APIRouter()
@router.get(
"/notes",
response_model=List[NoteOutSchema],
dependencies=[Depends(get_current_user)],
)
async def get_notes():
return await crud.get_notes()
@router.get(
"/note/{note_id}",
response_model=NoteOutSchema,
dependencies=[Depends(get_current_user)],
)
async def get_note(note_id: int) -> NoteOutSchema:
try:
return await crud.get_note(note_id)
except DoesNotExist:
raise HTTPException(
status_code=404,
detail="Note does not exist",
)
@router.post(
"/notes", response_model=NoteOutSchema, dependencies=[Depends(get_current_user)]
)
async def create_note(
note: NoteInSchema, current_user: UserOutSchema = Depends(get_current_user)
) -> NoteOutSchema:
return await crud.create_note(note, current_user)
@router.patch(
"/note/{note_id}",
dependencies=[Depends(get_current_user)],
response_model=NoteOutSchema,
responses={404: {"model": HTTPNotFoundError}},
)
async def update_note(
note_id: int,
note: UpdateNote,
current_user: UserOutSchema = Depends(get_current_user),
) -> NoteOutSchema:
return await crud.update_note(note_id, note, current_user)
@router.delete(
"/note/{note_id}",
response_model=Status,
responses={404: {"model": HTTPNotFoundError}},
dependencies=[Depends(get_current_user)],
)
async def delete_note(
note_id: int, current_user: UserOutSchema = Depends(get_current_user)
):
return await crud.delete_note(note_id, current_user)
修改main.py
from fastapi import FastAPI
from fastapi.middleware.cors import CORSMiddleware
from tortoise import Tortoise
from src.database.register import register_tortoise
from src.database.config import TORTOISE_ORM
# enable schemas to read relationship between models
Tortoise.init_models(["src.database.models"], "models")
"""
import 'from src.routes import users, notes' must be after 'Tortoise.init_models'
why?
https://stackoverflow.com/questions/65531387/tortoise-orm-for-python-no-returns-relations-of-entities-pyndantic-fastapi
"""
from src.routes import users, notes
app = FastAPI()
app.add_middleware(
CORSMiddleware,
allow_origins=["http://localhost:8080"],
allow_credentials=True,
allow_methods=["*"],
allow_headers=["*"],
)
app.include_router(users.router)
app.include_router(notes.router)
register_tortoise(app, config=TORTOISE_ORM, generate_schemas=False)
@app.get("/")
def home():
return "Hello, World!"
至此,后端代码完成
二、前端
1. Vue Setup
1. 安装vue和vue cli
$ vue -V
@vue/cli 5.0.8
# install
$ npm install -g @vue/cli@5.0.8
2.新建vue项目
$ vue create frontend
#Select Default ([Vue 3] babel, eslint)
$ cd frontend
$ vue add router
$ Use history mode for router ? Y
$ npm install --save axios@1.2.1 vuex@4.1.0 bootstrap@5.2.3
启动vue应用
$ npm run serve
2.1 src/main.js 导入依赖:Axios and Bootstrap
import 'bootstrap/dist/css/bootstrap.css';
import { createApp } from "vue";
import axios from 'axios';
import App from './App.vue';
import router from './router';
const app = createApp(App);
axios.defaults.withCredentials = true;
axios.defaults.baseURL = 'http://localhost:8082/'; // the FastAPI backend
app.use(router);
app.mount("#app");
2.2 更新 src/components/HelloWorld.vue
<template>
<div>
<p>{{ msg }}</p>
</div>
</template>
<script>
import axios from 'axios';
export default {
name: 'Ping',
data() {
return {
msg: '',
};
},
methods: {
getMessage() {
axios.get('/')
.then((res) => {
this.msg = res.data;
})
.catch((error) => {
console.error(error);
});
},
},
created() {
this.getMessage();
},
};
</script>
2.3 更新/frontend/src/App.vue
<template>
<div id="app">
<router-view/>
</div>
</template>
<style>
#app {
font-family: Avenir, Helvetica, Arial, sans-serif;
-webkit-font-smoothing: antialiased;
-moz-osx-font-smoothing: grayscale;
text-align: center;
color: #2c3e50;
}
</style>
此时重启vue应用,页面会显示Hello, World!
2.4 vue启动过程
index.html
→ main.js
→ app.vue
→ index.js
→ components/组件
1、vue3项目启动时,会先加载public/index.html
文件,其中主要有:
<div id="app"></div>
所有vue
文件均以单页面形式开发,所有vue
组件都是通过index.html
进行渲染加载
2、加载main.js文件
import { createApp } from "vue";
import App from './App.vue';
const app = createApp(App);
执行createApp方法,把App.vue页面当做参数传入,并执行mount(‘#app’)方法,意思就是让index.html的
中显示App.vue页面3、App.vue页面中,一个根组件。引入HelloWorld.vue页面
<script>
// @ is an alias to /src
//引入子级组件
import HelloWorld from './components/HelloWorld.vue';
export default {
components: {
HelloWorld
}
}
</script>
4、数据显示
HelloWorld.vue中 msg通过向后端发送请求获得,后端"/"返回值为hello world,所以页面显示该值。
data() {
return {
msg: '',
};
},
5、router/index.js
引入组件routes
时,path
为你以后页面间路由跳转的路径。name
为import
进来的名字,component
也为这个名字
2. Vuex
把组件的共享状态抽取出来,以一个全局单例模式管理
Vuex 是一个专为 Vue.js 应用程序开发的状态管理模式 + 库。它采用集中式存储管理应用的所有组件的状态,并以相应的规则保证状态以一种可预测的方式发生变化。
项目结构为
frontend/src/store
├── index.js
└── modules
├── notes.js
└── users.js
1、index.js
管理users和notes两个module
import { createStore } from "vuex";
import notes from './modules/notes';
import users from './modules/users';
export default createStore({
modules: {
notes,
users,
}
});
2、notes.js
import axios from 'axios';
const state = { //提供唯一的公共数据源,所有共享的数据统一放到store的state进行储存.数据,相当于data
notes: null,
note: null
};
const getters = { //类似于vue中的computed,进行缓存,对于Store中的数据进行加工处理形成新的数据
stateNotes: state => state.notes,
stateNote: state => state.note,
};
const actions = { // 若要进行异步操作,使用Action
async createNote({dispatch}, note) {
await axios.post('notes', note);
await dispatch('getNotes');
},
async getNotes({commit}) {
let {data} = await axios.get('notes');
commit('setNotes', data);
},
async viewNote({commit}, id) {
let {data} = await axios.get(`note/${id}`);
commit('setNote', data);
},
// eslint-disable-next-line no-empty-pattern
async updateNote({}, note) {
await axios.patch(`note/${note.id}`, note.form);
},
// eslint-disable-next-line no-empty-pattern
async deleteNote({}, id) {
await axios.delete(`note/${id}`);
}
};
const mutations = { // 更改 Vuex 的 store 中的状态的唯一方法是提交 mutation
setNotes(state, notes){
state.notes = notes;
},
setNote(state, note){
state.note = note;
},
};
export default {
state,
getters,
actions,
mutations
};
3、users.js
import axios from 'axios';
const state = {
user: null,
};
const getters = {
isAuthenticated: state => !!state.user,
stateUser: state => state.user,
};
const actions = {
async register({dispatch}, form) {
await axios.post('register', form);
let UserForm = new FormData();
UserForm.append('username', form.username);
UserForm.append('password', form.password);
await dispatch('logIn', UserForm);
},
async logIn({dispatch}, user) {
await axios.post('login', user);
await dispatch('viewMe');
},
async viewMe({commit}) {
let {data} = await axios.get('users/whoami');
await commit('setUser', data);
},
// eslint-disable-next-line no-empty-pattern
async deleteUser({}, id) {
await axios.delete(`user/${id}`);
},
async logOut({commit}) {
let user = null;
commit('logout', user);
}
};
const mutations = {
setUser(state, username) {
state.user = username;
},
logout(state, user){
state.user = user;
},
};
export default {
state,
getters,
actions,
mutations
};
await axios.post('login', user);
await dispatch('viewMe');
通过dispatch分发action,相当于登录成功之后调用users/whoami接口,返回用户信息。
3. Components
1、增加导航栏组件
/src/components/NavBar.vue
<template>
<header>
<nav class="navbar navbar-expand-md navbar-dark bg-dark">
<div class="container">
<a class="navbar-brand" href="/">FastAPI + Vue</a>
<button class="navbar-toggler" type="button" data-bs-toggle="collapse" data-bs-target="#navbarCollapse" aria-controls="navbarCollapse" aria-expanded="false" aria-label="Toggle navigation">
<span class="navbar-toggler-icon"></span>
</button>
<div class="collapse navbar-collapse" id="navbarCollapse">
<ul v-if="isLoggedIn" class="navbar-nav me-auto mb-2 mb-md-0">
<li class="nav-item">
<router-link class="nav-link" to="/">Home</router-link>
</li>
<li class="nav-item">
<router-link class="nav-link" to="/dashboard">Dashboard</router-link>
</li>
<li class="nav-item">
<router-link class="nav-link" to="/profile">My Profile</router-link>
</li>
<li class="nav-item">
<a class="nav-link" @click="logout">Log Out</a>
</li>
</ul>
<ul v-else class="navbar-nav me-auto mb-2 mb-md-0">
<li class="nav-item">
<router-link class="nav-link" to="/">Home</router-link>
</li>
<li class="nav-item">
<router-link class="nav-link" to="/register">Register</router-link>
</li>
<li class="nav-item">
<router-link class="nav-link" to="/login">Log In</router-link>
</li>
</ul>
</div>
</div>
</nav>
</header>
</template>
<script>
import { defineComponent } from 'vue';
export default defineComponent({
name: 'NavBar',
computed: {
isLoggedIn: function() {
return this.$store.getters.isAuthenticated;
}
},
methods: {
async logout () {
await this.$store.dispatch('logOut');
this.$router.push('/login');
}
},
});
</script>
<style scoped>
a {
cursor: pointer;
}
</style>
根据isLoggedIn值显示不同的导航栏
logout方法分发logOut action,并将url重定向到登录
2、App.vue添加NavBar组件
/src/App.vue
<template>
<div id="app">
<NavBar />
<div class="main container">
<router-view/>
</div>
</div>
</template>
<script>
// @ is an alias to /src
import NavBar from '@/components/NavBar.vue'
export default {
components: {
NavBar
}
}
</script>
<style>
#app {
font-family: Avenir, Helvetica, Arial, sans-serif;
-webkit-font-smoothing: antialiased;
-moz-osx-font-smoothing: grayscale;
color: #2c3e50;
}
.main {
padding-top: 5em;
}
</style>
现在的前端首页由NavBar组件的元素填充
4. Views
1. home
项目主页 /src/views/HomeView.vue
<template>
<section>
<p>This site is built with FastAPI and Vue.</p>
<div v-if="isLoggedIn" id="logout">
<p id="logout">Click <a href="/dashboard">here</a> to view all notes.</p>
</div>
<p v-else>
<span><a href="/register">Register</a></span>
<span> or </span>
<span><a href="/login">Log In</a></span>
</p>
</section>
</template>
<script>
import { defineComponent } from 'vue';
export default defineComponent({
name: 'HomeView',
computed : {
isLoggedIn: function() {
return this.$store.getters.isAuthenticated;
}
},
});
</script>
Here, the end user is displayed either a link to all notes or links to sign up/in based on the value of the isLoggedIn
property.
2.Register
/src/views/RegisterView.vue
<template>
<section>
<form @submit.prevent="submit">
<div class="mb-3">
<label for="username" class="form-label">Username:</label>
<input type="text" name="username" v-model="user.username" class="form-control" />
</div>
<div class="mb-3">
<label for="full_name" class="form-label">Full Name:</label>
<input type="text" name="full_name" v-model="user.full_name" class="form-control" />
</div>
<div class="mb-3">
<label for="password" class="form-label">Password:</label>
<input type="password" name="password" v-model="user.password" class="form-control" />
</div>
<button type="submit" class="btn btn-primary">Submit</button>
</form>
</section>
</template>
<script>
import { defineComponent } from 'vue';
import { mapActions } from 'vuex';
export default defineComponent({
name: 'Register',
data() {
return {
user: {
username: '',
full_name: '',
password: '',
},
};
},
methods: {
...mapActions(['register']),
async submit() {
try {
await this.register(this.user);
this.$router.push('/dashboard');
} catch (error) {
throw 'Username already exists. Please try again.';
}
},
},
});
</script>
The form takes in the username, full name, and password, all of which are properties on the user
object. The Register
action is mapped (imported) into the component via mapActions. this.Register
is then called and passed the user
object. If the result is successful, the user is then redirected to the /dashboard
.
3. Login
<template>
<section>
<form @submit.prevent="submit">
<div class="mb-3">
<label for="username" class="form-label">Username:</label>
<input type="text" name="username" v-model="form.username" class="form-control" />
</div>
<div class="mb-3">
<label for="password" class="form-label">Password:</label>
<input type="password" name="password" v-model="form.password" class="form-control" />
</div>
<button type="submit" class="btn btn-primary">Submit</button>
</form>
</section>
</template>
<script>
import { defineComponent } from 'vue';
import { mapActions } from 'vuex';
export default defineComponent({
name: 'Login',
data() {
return {
form: {
username: '',
password:'',
}
};
},
methods: {
...mapActions(['logIn']),
async submit() {
const User = new FormData();
User.append('username', this.form.username);
User.append('password', this.form.password);
await this.logIn(User);
this.$router.push('/dashboard');
}
}
});
</script>
On submission, the logIn
action is called. On success, the user is redirected to /dashboard
.
4.Dashboard
<template>
<div>
<section>
<h1>Add new note</h1>
<hr/><br/>
<form @submit.prevent="submit">
<div class="mb-3">
<label for="title" class="form-label">Title:</label>
<input type="text" name="title" v-model="form.title" class="form-control" />
</div>
<div class="mb-3">
<label for="content" class="form-label">Content:</label>
<textarea
name="content"
v-model="form.content"
class="form-control"
></textarea>
</div>
<button type="submit" class="btn btn-primary">Submit</button>
</form>
</section>
<br/><br/>
<section>
<h1>Notes</h1>
<hr/><br/>
<div v-if="notes.length">
<div v-for="note in notes" :key="note.id" class="notes">
<div class="card" style="width: 18rem;">
<div class="card-body">
<ul>
<li><strong>Note Title:</strong> {{ note.title }}</li>
<li><strong>Author:</strong> {{ note.author.username }}</li>
<li><router-link :to="{name: 'Note', params:{id: note.id}}">View</router-link></li>
</ul>
</div>
</div>
<br/>
</div>
</div>
<div v-else>
<p>Nothing to see. Check back later.</p>
</div>
</section>
</div>
</template>
<script>
import { defineComponent } from 'vue';
import { mapGetters, mapActions } from 'vuex';
export default defineComponent({
name: 'Dashboard',
data() {
return {
form: {
title: '',
content: '',
},
};
},
created: function() {
return this.$store.dispatch('getNotes');
},
computed: {
...mapGetters({ notes: 'stateNotes'}),
},
methods: {
...mapActions(['createNote']),
async submit() {
await this.createNote(this.form);
},
},
});
</script>
The dashboard displays all notes from the API and also allows users to create new notes.
The created
function is called during the creation of the component, which hooks into the component lifecycle. In it, we called the mapped getNotes
action.
5.Profile
<template>
<section>
<h1>Your Profile</h1>
<hr/><br/>
<div>
<p><strong>Full Name:</strong> <span>{{ user.full_name }}</span></p>
<p><strong>Username:</strong> <span>{{ user.username }}</span></p>
<p><button @click="deleteAccount()" class="btn btn-primary">Delete Account</button></p>
</div>
</section>
</template>
<script>
import { defineComponent } from 'vue';
import { mapGetters, mapActions } from 'vuex';
export default defineComponent({
name: 'Profile',
created: function() {
return this.$store.dispatch('viewMe');
},
computed: {
...mapGetters({user: 'stateUser' }),
},
methods: {
...mapActions(['deleteUser']),
async deleteAccount() {
try {
await this.deleteUser(this.user.id);
await this.$store.dispatch('logOut');
this.$router.push('/');
} catch (error) {
console.error(error);
}
}
},
});
</script>
The "Delete Account" button calls deleteUser
, which sends the user.id
to the deleteUser
action, logs the user out, and then redirects the user back to the home page.
6. Note
<template>
<div v-if="note">
<p><strong>Title:</strong> {{ note.title }}</p>
<p><strong>Content:</strong> {{ note.content }}</p>
<p><strong>Author:</strong> {{ note.author.username }}</p>
<div v-if="user.id === note.author.id">
<p><router-link :to="{name: 'EditNote', params:{id: note.id}}" class="btn btn-primary">Edit</router-link></p>
<p><button @click="removeNote()" class="btn btn-secondary">Delete</button></p>
</div>
</div>
</template>
<script>
import { defineComponent } from 'vue';
import { mapGetters, mapActions } from 'vuex';
export default defineComponent({
name: 'Note',
props: ['id'],
async created() {
try {
await this.viewNote(this.id);
} catch (error) {
console.error(error);
this.$router.push('/dashboard');
}
},
computed: {
...mapGetters({ note: 'stateNote', user: 'stateUser'}),
},
methods: {
...mapActions(['viewNote', 'deleteNote']),
async removeNote() {
try {
await this.deleteNote(this.id);
this.$router.push('/dashboard');
} catch (error) {
console.error(error);
}
}
},
});
</script>
This view loads the note details of any note ID passed to it from it's route as a prop.
In the created lifecycle hook, we passed the id
from the props
to the viewNote
action from the store. stateUser
and stateNote
are mapped into the component, via mapGetters, as user
and note
, respectively. The "Delete" button triggers the deleteNote
method, which, in turn, calls the deleteNote
action and redirects the user back to the /dashboard
route.
We used an if statement to display the "Edit" and "Delete" buttons only if the note.author
is the same as the logged in user.
7. EditNote
<template>
<section>
<h1>Edit note</h1>
<hr/><br/>
<form @submit.prevent="submit">
<div class="mb-3">
<label for="title" class="form-label">Title:</label>
<input type="text" name="title" v-model="form.title" class="form-control" />
</div>
<div class="mb-3">
<label for="content" class="form-label">Content:</label>
<textarea
name="content"
v-model="form.content"
class="form-control"
></textarea>
</div>
<button type="submit" class="btn btn-primary">Submit</button>
</form>
</section>
</template>
<script>
import { defineComponent } from 'vue';
import { mapGetters, mapActions } from 'vuex';
export default defineComponent({
name: 'EditNote',
props: ['id'],
data() {
return {
form: {
title: '',
content: '',
},
};
},
created: function() {
this.GetNote();
},
computed: {
...mapGetters({ note: 'stateNote' }),
},
methods: {
...mapActions(['updateNote', 'viewNote']),
async submit() {
try {
let note = {
id: this.id,
form: this.form,
};
await this.updateNote(note);
this.$router.push({name: 'Note', params:{id: this.note.id}});
} catch (error) {
console.log(error);
}
},
async GetNote() {
try {
await this.viewNote(this.id);
this.form.title = this.note.title;
this.form.content = this.note.content;
} catch (error) {
console.error(error);
this.$router.push('/dashboard');
}
}
},
});
</script>
This view displays a pre-loaded form with the note title and content for the author to edit and update. Similar to the Note
view, the id
of the note is passed from the router object to the page as a prop.
The getNote
method is used to load the form with the note info. It passes the id
to the viewNote
action and uses the note
getter values to fill the form. While the component is being created, the getNote
function is called.
8.注册路由
将view添加到路由js
/src/router/index.js
import { createRouter, createWebHistory } from 'vue-router'
import HomeView from '@/views/HomeView.vue';
import RegisterView from '@/views/RegisterView.vue';
import LoginView from '@/views/LoginView.vue';
import DashboardView from '@/views/DashboardView.vue';
import ProfileView from '@/views/ProfileView.vue';
import NoteView from '@/views/NoteView.vue';
import EditNoteView from '@/views/EditNoteView.vue';
const routes = [
{
path: '/',
name: "Home",
component: HomeView,
},
{
path: '/register',
name: 'Register',
component: RegisterView,
},
{
path: '/login',
name: 'Login',
component: LoginView,
},
{
path: '/dashboard',
name: 'Dashboard',
component: DashboardView,
meta: { requiresAuth: true }, //These routes shouldn't be accessible to unauthenticated users.
},
{
path: '/profile',
name: 'Profile',
component: ProfileView,
meta: { requiresAuth: true },
},
{
path: '/note/:id',
name: 'Note',
component: NoteView,
meta: { requiresAuth: true },
props: true,
},
{
path: '/editnote/:id',
name: 'EditNote',
component: EditNoteView,
meta: { requiresAuth: true },
props: true,
},
]
const router = createRouter({
history: createWebHistory(process.env.BASE_URL),
routes
})
export default router
如果用户没有登录就进入了需要登录的navigation,则重定向到登录界面
// NEW
router.beforeEach((to, _, next) => {
if (to.matched.some(record => record.meta.requiresAuth)) {
if (store.getters.isAuthenticated) {
next();
return;
}
next('/login');
} else {
next();
}
});
5. 过期时间处理
token过期之后,用户退出登录,重定向到login
/src/main.js
import 'bootstrap/dist/css/bootstrap.css';
import { createApp } from "vue";
import axios from 'axios';
import App from './App.vue';
import router from './router';
import store from './store';
const app = createApp(App);
axios.defaults.withCredentials = true;
axios.defaults.baseURL = 'http://localhost:8082/'; // the FastAPI backend
axios.interceptors.response.use(undefined, function (error) {
if (error) {
const originalRequest = error.config;
if (error.response.status === 401 && !originalRequest._retry) {
originalRequest._retry = true;
store.dispatch('logOut');
return router.push('/login')
}
}
});
app.use(router);
app.use(store);
app.mount("#app");