drf—— 編寫登陸接口，用同一個接口既能夠不登陸訪問，又能夠登陸訪問

要求：

編寫登陸接口，一個接口既能夠不登陸訪問，又能夠登陸訪問（匿名用戶一分鐘訪問1次，登陸用戶一分鐘訪問3次）
#須要用到student和user表

1.models.py

from django.db import models

class Student(models.Model):
    name = models.CharField(max_length=32)
    sex = models.SmallIntegerField(choices=((1, '男'), (2, '女'), (3, '未知')), default=1)
    age = models.IntegerField()

class User(models.Model):
    username = models.CharField(max_length=32)
    password = models.CharField(max_length=32)
    user_type = models.IntegerField(choices=((1, '超級用戶'), (2, '普通用戶'), (3, '二筆用戶')),default=1)
#此表徹底能夠與User表合爲一個，但這樣解耦合，可擴展性高
class UserToken(models.Model):
    user = models.OneToOneField(to='User',on_delete=models.CASCADE)
    token = models.CharField(max_length=64)

2.數據遷移，兩條命令；而後鏈接數據庫，在user和student表中寫入測試數據

3.serializer.py

from rest_framework import serializers
from app01.models import Student


class StudentSerializer(serializers.ModelSerializer):
    sex = serializers.CharField(source='get_sex_display')

    class Meta:
        model = Student
        fields = '__all__'

4.auth.py

from rest_framework.throttling import BaseThrottle,SimpleRateThrottle

from app01 import models
#from rest_framework.exceptions import AuthenticationFailed

from rest_framework.authentication import BaseAuthentication

class LoginAuth(BaseAuthentication):
    def authenticate(self, request):
        token = request.GET.get('token')
        res = models.UserToken.objects.filter(token=token).first()
        if res:
            return (res.user, token)
        else:
            return None


class MySimpleThrottle(SimpleRateThrottle):
    scope = 'xxx'

    def get_cache_key(self, request, view):
        if not request.user.id:  # 沒有登陸用戶
            return self.get_ident(request)  # 根據ip限制
        else:
            return None

class MyLoginThrottle(SimpleRateThrottle):
    scope = 'login'
    def get_cache_key(self, request, view):
        return request.user.pk

5.views.py

from rest_framework.views import APIView
from app01 import models
import uuid
from app01.auth import LoginAuth,MyLoginThrottle,MySimpleThrottle
class LoginView(APIView):
    authentication_classes = []
    def post(self, request):
        res = {'code': 100, 'msg': '登陸成功'}
        username = request.data.get('username')
        password = request.data.get('password')
        # 查詢數據庫
        user = models.User.objects.filter(username=username, password=password).first()

        if user:
            token = uuid.uuid4()  # 生成一個隨機字符串
            # 把token存到UserToken表中（若是是第一次登陸：新增，若是不是第一次：更新）
            models.UserToken.objects.update_or_create(defaults={'token': token}, user=user)
            res['token'] = token
            return Response(res)
        else:
            res['code'] = 101
            res['msg'] = '用戶名或密碼錯誤'

            return Response(res)


from app01.models import Student
from app01.serializer import StudentSerializer

from rest_framework.mixins import ListModelMixin
from rest_framework.viewsets import GenericViewSet
from rest_framework.response import Response
from rest_framework.mixins import CreateModelMixin
class StudentView(GenericViewSet, ListModelMixin, CreateModelMixin):
    queryset = Student.objects.all()
    serializer_class = StudentSerializer
    authentication_classes = [LoginAuth,]
    throttle_classes = [MyLoginThrottle,MySimpleThrottle,]

6.urls.py

from django.urls import path
from app01 import views
#自動生成路由
from rest_framework.routers import SimpleRouter
router=SimpleRouter()
router.register('students',views.StudentView)

urlpatterns = [
    path('login/', views.LoginView.as_view()),
]
urlpatterns+=router.urls
print(router.urls)

7.settings.py

INSTALLED_APPS = [
    ...
    'rest_framework'
]

REST_FRAMEWORK = {
    # 'DEFAULT_THROTTLE_CLASSES':['app01.auth.MyThrottle',],
    'DEFAULT_THROTTLE_RATES' : {
        'xxx':'1/m',
        'login':'3/m'
    }
}

 

後續:

若是要寫兩個接口，一個接口不登錄訪問1次，一個接口登陸訪問3次，能夠用如下的方式：（推薦使用寫兩個接口，這樣解耦合，不須要寫那麼多判斷麻煩）
-方式一：
        -寫兩個頻率類（一個是根據ip限制，另外一個根據userid）
-方式二：
        -使用內置的，若是能夠，就沒問題就能夠，若是又問題須要繼承重寫get_cache_key方法