drf-视图组件 认证组件
一、视图组件:
基础块:
from rest_framework.response import Response from rest_framework import serializers from app01.models import * from rest_framework.views import APIView from rest_framework.exceptions import AuthenticationFailed import uuid from rest_framework.authentication import BaseAuthentication class BookSerializer(serializers.ModelSerializer): class Meta: model = Book fields = '__all__'
1、基本视图,不采用rest_framework提供的组件
class Booksview(APIView): def get(self, request, *args, **kwargs): respones = {'status': 100, 'msg': '查询成功'} book_list = Book.objects.all() book_ll = BookSerializer(instance=book_list, many=True) respones['data'] = book_ll.data return Response(respones) def post(self, request, *args, **kwargs): respones = {'status': 100, 'msg': '新增成功'} book = BookSerializer(data=request.data, many=False) if book.is_valid(): book.save() respones['data'] = book.data else: respones['msg'] = book.errors return Response(respones) class Bookview(APIView): def get(self, request, pk, *args, **kwargs): respones = {'status': 100, 'msg': '查询成功'} book_list = Book.objects.filter(pk=pk) book_ll = BookSerializer(instance=book_list, many=True) respones['data'] = book_ll.data return Response(respones) def put(self, request, pk, *args, **kwargs): respones = {'status': 100, 'msg': '修改成功'} book = Book.objects.filter(pk=pk).first() book_ll = BookSerializer(instance=book, data=request.data) if book_ll.is_valid(): book_ll.save() respones['data'] = book_ll.data else: respones['msg'] = book_ll.errors return Response(respones) def delete(self, request, pk, *args, **kwargs): book = Book.objects.filter(pk=pk).delete() return HttpResponse("")
2、基于mixins,generics编写的视图:
from rest_framework.mixins import * from rest_framework.generics import GenericAPIView class BooksView(ListModelMixin, CreateModelMixin, GenericAPIView): queryset = Book.objects serializer_class = BookSerializer def get(self, request, *args, **kwargs): return self.list(request, *args, **kwargs) def post(self, request, *args, **kwargs): return self.create(request, *args, **kwargs) class BookView(RetrieveModelMixin, DestroyModelMixin, UpdateModelMixin, GenericAPIView): queryset = Book.objects serializer_class = BookSerializer def get(self, request, *args, **kwargs): return self.retrieve(request, *args, **kwargs) def put(self, request, *args, **kwargs): return self.update(request, *args, **kwargs) def delete(self, request, *args, **kwargs): return self.destroy(request, *args, **kwargs)
3、基于generics下的ListAPIView, CreateAPIView, UpdateAPIView, DestroyAPIView, RetrieveAPIView编写的视图:
from rest_framework.generics import ListAPIView, CreateAPIView, UpdateAPIView, DestroyAPIView, RetrieveAPIView class BooksView(ListAPIView, CreateAPIView): queryset = Book.objects serializer_class = BookSerializer class BookView(UpdateAPIView, DestroyAPIView, RetrieveAPIView): queryset = Book.objects serializer_class = BookSerializer
4、基于viewsets编写的视图类:
from rest_framework.viewsets import ModelViewSet class BooksView(ModelViewSet): queryset = Book.objects serializer_class = BookSerializer # 注: 因为BooksView中包含了5个方法,所以在路由层需要告诉视图类不同请求所对应应该调用的函数,因此路由层有所变化。
路由层:
from django.contrib import admin from django.urls import path, re_path from app01 import views urlpatterns = [ path('admin/', admin.site.urls), re_path('^books/$', views.BooksView.as_view({'get': "list", "post": 'create'})), re_path('^books/(?P<pk>\d+)', views.BooksView.as_view({"get": 'retrieve', 'put': 'update', 'delete': 'destroy'})) ]
二、认证组件:
案例示范:
1、models层
# 创建一个可登录的用户表 class User(models.Model): id = models.AutoField(primary_key=True) user = models.CharField(max_length=20) password = models.CharField(max_length=20) # 用户登陆验证携带信息 class Usertoken(models.Model): user = models.OneToOneField(to='User', on_delete=models.CASCADE) token = models.CharField(max_length=64)
2、为登录配置的视图类:
import uuid class Login(APIView): def post(self, request): back_msg = {'status': '100', 'msg': 'login success'} try: usr = request.data.get('user', None) password = request.data.get('password', None) print(usr, password) print(request) user = User.objects.get(user=usr, password=password) if user: token = uuid.uuid4() Usertoken.objects.update_or_create(user=user, defaults={'token':token}) back_msg['token'] = token else: back_msg['msg'] = 'login failed' except Exception as e: back_msg['msg'] = str(e) return Response(back_msg)
3、登录验证类:
class TokenAuth(): def authenticate(self, request): token = request.GET.get('token', None) token_obj = Usertoken.objects.filter(token=token).first() if token_obj: return None else: raise AuthenticationFailed('认证失败') def authenticate_header(self, request): pass # 可以继承django内部封装好的 from rest_framework.authentication import BaseAuthentication class TokenAuth(BaseAuthentication): def authenticate(self, request): token = request.GET.get('token', None) token_obj = Usertoken.objects.filter(token=token).first() if token_obj: return token_obj.user, token_obj else: raise AuthenticationFailed('认证失败')
4、需验证的视图类:
class Book(APIView): authentication_classes = [TokenAuth] def get(self, request): return Response('ok')
