揭開DRF序列化技術的神祕面紗
在RESTful API中,接口返回的是JSON,JSON的內容對應的是數據庫中的數據,DRF是經過序列化(Serialization)的技術,把數據模型轉換爲JSON的,反之,叫作反序列化(deserialization)。本文就來揭開DRF序列化技術的神祕面紗。html
建立虛擬環境
虛擬環境是獨立的Python環境,能夠和系統環境分離,只安裝須要的包便可,使用如下命令建立並激活:python
# 建立Python虛擬環境 python -m venv env # 激活虛擬環境 env\Scripts\activate.bat # Mac中使用`source env/bin/activate`
退出虛擬環境用deactivate。shell
接着在虛擬環境中安裝本文用到的包:數據庫
pip install django pip install djangorestframework pip install pygments # 代碼高亮
建立項目
建立project:django
django-admin startproject tutorial
建立app:api
cd tutorial python manage.py startapp snippets
在tutorial/settings.py中的INSTALLED_APPS添加snippets和rest_framework:跨域
INSTALLED_APPS = [
...
'rest_framework',
'snippets.apps.SnippetsConfig',
]
只有添加後,app纔會生效哦。服務器
建立model
編輯snippets/models.py,建立Snippet模型:app
from django.db import models
from pygments.lexers import get_all_lexers
from pygments.styles import get_all_styles
LEXERS = [item for item in get_all_lexers() if item[1]]
LANGUAGE_CHOICES = sorted([(item[1][0], item[0]) for item in LEXERS])
STYLE_CHOICES = sorted([(item, item) for item in get_all_styles()])
class Snippet(models.Model):
created = models.DateTimeField(auto_now_add=True)
title = models.CharField(max_length=100, blank=True, default='')
code = models.TextField()
linenos = models.BooleanField(default=False)
language = models.CharField(choices=LANGUAGE_CHOICES, default='python', max_length=100)
style = models.CharField(choices=STYLE_CHOICES, default='friendly', max_length=100)
class Meta:
ordering = ['created']
Snippet有6個字段,created、title、code、linenos、language、style。cors
接着同步數據庫:
python manage.py makemigrations snippets python manage.py migrate
建立Serializer
rest_framework.serializers的結構以下:
查看Python模塊中的成員,須要勾選:
以前咱們用過HyperlinkedModelSerializer,是封裝後的符合RESTful良好設計的序列化器,這裏直接使用更底層的Serializer。在snippets目錄下建立serializers.py,添加如下代碼:
from rest_framework import serializers
from snippets.models import Snippet, LANGUAGE_CHOICES, STYLE_CHOICES
class SnippetSerializer(serializers.Serializer):
id = serializers.IntegerField(read_only=True)
title = serializers.CharField(required=False, allow_blank=True, max_length=100)
code = serializers.CharField(style={'base_template': 'textarea.html'})
linenos = serializers.BooleanField(required=False)
language = serializers.ChoiceField(choices=LANGUAGE_CHOICES, default='python')
style = serializers.ChoiceField(choices=STYLE_CHOICES, default='friendly')
def create(self, validated_data):
"""
Create and return a new `Snippet` instance, given the validated data.
"""
return Snippet.objects.create(**validated_data)
def update(self, instance, validated_data):
"""
Update and return an existing `Snippet` instance, given the validated data.
"""
instance.title = validated_data.get('title', instance.title)
instance.code = validated_data.get('code', instance.code)
instance.linenos = validated_data.get('linenos', instance.linenos)
instance.language = validated_data.get('language', instance.language)
instance.style = validated_data.get('style', instance.style)
instance.save()
return instance
代碼第一部分定義了序列化/反序列化的字段,字段定義方式相似於Form。第二部分的create()和update()方法定義了調用serializer.save()時,建立和更新實例的處理方式。
玩玩Serializer
既然已經建立好了Serializer,何不玩玩它?只有玩了才知道序列化的技術細節。這裏用到了Django shell,能夠在命令行實時看到輸出結果:
python manage.py shell
首先經過模型新增2條測試數據:
from snippets.models import Snippet
from snippets.serializers import SnippetSerializer
from rest_framework.renderers import JSONRenderer
from rest_framework.parsers import JSONParser
snippet = Snippet(code='foo = "bar"\n')
snippet.save()
snippet = Snippet(code='print("hello, world")\n')
snippet.save()
接着把它序列化看看:
serializer = SnippetSerializer(snippet)
serializer.data
# {'id': 2, 'title': '', 'code': 'print("hello, world")\n', 'linenos': False, 'language': 'python', 'style': 'friendly'}
由於
snippet變量最後引用的是第2個數據模型的實例,因此這裏只顯示第2條數據。
serializer.data返回的是個字典,最後把字典轉換爲JSON:
content = JSONRenderer().render(serializer.data)
content
# b'{"id": 2, "title": "", "code": "print(\\"hello, world\\")\\n", "linenos": false, "language": "python", "style": "friendly"}'
這就是序列化的過程,模型實例→Python字典→JSON。
反序列化的過程是相似的,先把JSON轉換爲Python字典:
import io stream = io.BytesIO(content) data = JSONParser().parse(stream)
再把字典轉換爲模型實例:
serializer = SnippetSerializer(data=data)
serializer.is_valid()
# True
serializer.validated_data
# OrderedDict([('title', ''), ('code', 'print("hello, world")\n'), ('linenos', False), ('language', 'python'), ('style', 'friendly')])
serializer.save()
# <Snippet: Snippet object>
由於SnippetSerializer的create()方法代碼是
return Snippet.objects.create(**validated_data),因此serializer.save()會在數據庫中新增1條數據,並返回Snippet模型實例。
另外,序列化對象不僅有模型實例,也能夠是數據集:
serializer = SnippetSerializer(Snippet.objects.all(), many=True)
serializer.data
# [OrderedDict([('id', 1), ('title', ''), ('code', 'foo = "bar"\n'), ('linenos', False), ('language', 'python'), ('style', 'friendly')]), OrderedDict([('id', 2), ('title', ''), ('code', 'print("hello, world")\n'), ('linenos', False), ('language', 'python'), ('style', 'friendly')]), OrderedDict([('id', 3), ('title', ''), ('code', 'print("hello, world")'), ('linenos', False), ('language', 'python'), ('style', 'friendly')])]
使用ModelSerializers
rest_framework.serializers.Serializers比較底層,須要重複定義model中的字段,DRF的做者固然也想到了這個問題,而且給出瞭解決辦法:把Serializers封裝成ModelSerializers。在snippets/serializers.py中替換SnippetSerializer爲:
class SnippetSerializer(serializers.ModelSerializer):
class Meta:
model = Snippet
fields = ['id', 'title', 'code', 'linenos', 'language', 'style']
寫法果真簡潔了不少。使用Django shell打印出來看看:
from snippets.serializers import SnippetSerializer
serializer = SnippetSerializer()
print(repr(serializer))
# SnippetSerializer():
# id = IntegerField(label='ID', read_only=True)
# title = CharField(allow_blank=True, max_length=100, required=False)
# code = CharField(style={'base_template': 'textarea.html'})
# linenos = BooleanField(required=False)
# language = ChoiceField(choices=[('Clipper', 'FoxPro'), ('Cucumber', 'Gherkin'), ('RobotFramework', 'RobotFramework'), ('abap', 'ABAP'), ('ada', 'Ada')...
# style = ChoiceField(choices=[('autumn', 'autumn'), ('borland', 'borland'), ('bw', 'bw'), ('colorful', 'colorful')...
和手動定義的字段如出一轍。其實ModelSerializer並無作額外的處理,咱們能夠從它的部分代碼片斷看到:
serializer_field_mapping = {
models.AutoField: IntegerField,
models.BigIntegerField: IntegerField,
models.BooleanField: BooleanField,
# Default `create` and `update` behavior...
def create(self, validated_data):
def update(self, instance, validated_data):
raise_errors_on_nested_writes('update', self, validated_data)
創建字段映射,定義create()和update()等方法,只作了最簡單的封裝。
編寫views
咱們以前用的是已經封裝好的rest_framework.viewsets,這裏直接用Django原生的view。在snippets/views.py中添加代碼:
from django.http import HttpResponse, JsonResponse from django.views.decorators.csrf import csrf_exempt from rest_framework.parsers import JSONParser from snippets.models import Snippet from snippets.serializers import SnippetSerializer
先建立snippet_list視圖,返回snippets列表或者新建1個snippet:
@csrf_exempt
def snippet_list(request):
"""
List all code snippets, or create a new snippet.
"""
if request.method == 'GET':
snippets = Snippet.objects.all()
serializer = SnippetSerializer(snippets, many=True)
return JsonResponse(serializer.data, safe=False)
elif request.method == 'POST':
data = JSONParser().parse(request)
serializer = SnippetSerializer(data=data)
if serializer.is_valid():
serializer.save()
return JsonResponse(serializer.data, status=201)
return JsonResponse(serializer.errors, status=400)
本文示例中,客戶端發起POST請求是不帶CSRF token的,因此須要添加csrf_exempt(exempt翻譯爲免除)裝飾器,容許跨域訪問。這裏只是演示,實際會使用django-cors-headers來解決跨域問題,而不是給每一個view都加上@csrf_exempt。
CSRF是指跨站請求僞造,攻擊者盜用你的身份,以你的名義發送惡意請求。CSRF token是指服務器經過token來認證,若是請求中沒有token或者token不匹配,那麼就認爲多是CSRF而拒絕該請求。
接着添加一個view,對單個snippet進行刪(delete)、改(update)、查(retrieve):
@csrf_exempt
def snippet_detail(request, pk):
"""
Retrieve, update or delete a code snippet.
"""
try:
snippet = Snippet.objects.get(pk=pk)
except Snippet.DoesNotExist:
return HttpResponse(status=404)
if request.method == 'GET':
serializer = SnippetSerializer(snippet)
return JsonResponse(serializer.data)
elif request.method == 'PUT':
data = JSONParser().parse(request)
serializer = SnippetSerializer(snippet, data=data)
if serializer.is_valid():
serializer.save()
return JsonResponse(serializer.data)
return JsonResponse(serializer.errors, status=400)
elif request.method == 'DELETE':
snippet.delete()
return HttpResponse(status=204)
注意,前面create返回的status爲201,這裏retrieve返回的默認的200,附上幾個常見狀態碼:
- 200 OK - GET/PUT/PATCH:服務器成功返回用戶請求的數據,該操做是冪等的(Idempotent)
- 201 CREATED - POST:用戶新建數據成功
- 204 NO content - DELETE:用戶刪除數據成功
- 400 Invalid request - POST/PUT/PATCH:用戶發出的請求有錯誤,服務器沒有進行新建或修改數據的操做,該操做是冪等的
- 401 Unauthorized - *:表示用戶沒有權限(令牌、用戶名、密碼錯誤)
- 403 Forbidden - *:表示用戶獲得受權(與401錯誤相對),可是訪問是被禁止的
最後,添加路由,新建文件snippets/urls.py:
from django.urls import path
from snippets import views
urlpatterns = [
path('snippets/', views.snippet_list),
path('snippets/<int:pk>/', views.snippet_detail),
]
再配置到tutorial/urls.py:
from django.urls import path, include
urlpatterns = [
path('', include('snippets.urls')),
]
測試API
啓動項目:
python manage.py runserver
新開一個Terminal,安裝HTTP命令行工具:
pip install httpie
請求snippets列表:
http http://127.0.0.1:8000/snippets/
HTTP/1.1 200 OK
...
[
{
"id": 1,
"title": "",
"code": "foo = \"bar\"\n",
"linenos": false,
"language": "python",
"style": "friendly"
},
{
"id": 2,
"title": "",
"code": "print(\"hello, world\")\n",
"linenos": false,
"language": "python",
"style": "friendly"
}
]
請求id爲2的snippet:
http http://127.0.0.1:8000/snippets/2/
HTTP/1.1 200 OK
...
{
"id": 2,
"title": "",
"code": "print(\"hello, world\")\n",
"linenos": false,
"language": "python",
"style": "friendly"
}
東方說
不得不說DRF的Tutorial實踐性很強,基本上照着作都能敲出來,體驗比較好。序列化的過程,就是模型實例→Python字典→JSON的過程。經過本文也理解了在app中models.py→serializers.py→views.py→urls.py的代碼編寫順序。
參考資料:
https://www.django-rest-framework.org/tutorial/1-serialization/
https://blog.csdn.net/yexudengzhidao/article/details/93527586
- 1. 揭開散列表的神祕面紗
- 2. 揭開5G神祕面紗
- 3. 揭開Zookeeper神祕面紗
- 4. 揭開技術選型的神祕面紗?
- 5. 揭開Design System的神祕面紗
- 6. 揭開PC-Lint9的神祕面紗
- 7. 揭開redux,react-redux的神祕面紗
- 8. 揭開 const 的神祕面紗
- 9. 揭開算法的神祕面紗
- 10. 揭開5G的神祕面紗
- 更多相關文章...
- • Hibernate的快照技術 - Hibernate教程
- • XML 相關技術 - XML 教程
- • Docker容器實戰(一) - 封神Server端技術
- • PHP開發工具
-
每一个你不满意的现在,都有一个你没有努力的曾经。
- 1. 揭開散列表的神祕面紗
- 2. 揭開5G神祕面紗
- 3. 揭開Zookeeper神祕面紗
- 4. 揭開技術選型的神祕面紗?
- 5. 揭開Design System的神祕面紗
- 6. 揭開PC-Lint9的神祕面紗
- 7. 揭開redux,react-redux的神祕面紗
- 8. 揭開 const 的神祕面紗
- 9. 揭開算法的神祕面紗
- 10. 揭開5G的神祕面紗