Django自定義用戶認證

自定義一個用戶認證

 

詳細參考官方文檔：

https://docs.djangoproject.com/en/1.9/topics/auth/customizing/#django.contrib.auth.models.PermissionsMixin.has_perms

 

1、建立用戶的表

UserProfile()：存放用戶信息的表

UserProfileManager(): 用戶建立用戶的類方法

一、生成一個單獨的Moel文件專門用來存放用戶表

#!/usr/bin/env python
# _*_coding:utf-8_*_

from django.db import models
from django.contrib.auth.models import (
    BaseUserManager, AbstractBaseUser
)


class UserProfileManager(BaseUserManager):
    def create_user(self, email, name, password=None):
        """
        Creates and saves a User with the given email, date of
        birth and password.
        """
        if not email:
            raise ValueError('Users must have an email address')

        user = self.model(
            email=self.normalize_email(email),
            name=name,
        )

        user.set_password(password)
        user.save(using=self._db)
        return user

    def create_superuser(self, email, name, password):
        """
        Creates and saves a superuser with the given email, date of
        birth and password.
        """
        user = self.create_user(email,
            password=password,
            name=name
        )

        user.is_admin = True
        user.save(using=self._db)
        return user


class UserProfile(AbstractBaseUser):

    email = models.EmailField(
        verbose_name='email address',
        max_length=255,
        unique=True,
    )
    name = models.CharField(max_length=64)
    is_active = models.BooleanField(default=True)
    is_admin = models.BooleanField(default=False)

    class Meta:
        verbose_name = '用戶表'
        verbose_name_plural = '帳戶表'

    objects = UserProfileManager()

    USERNAME_FIELD = 'email'
    REQUIRED_FIELDS = ['name']

    def get_full_name(self):
        # The user is identified by their email address
        return self.email

    def get_short_name(self):
        # The user is identified by their email address
        return self.email

    def __str__(self):              # __unicode__ on Python 2
        return self.email

    def has_perm(self, perm, obj=None):
        "Does the user have a specific permission?"
        # Simplest possible answer: Yes, always
        return True

    def has_module_perms(self, app_label):
        "Does the user have permissions to view the app `app_label`?"
        # Simplest possible answer: Yes, always
        return True

    @property
    def is_staff(self):
        "Is the user a member of staff?"
        # Simplest possible answer: All admins are staff
        return self.is_admin

user_models.py

 

二、在models裏面添加自定義的用戶表

# _*_coding:utf-8_*_

from django.db import models
from collect_app.user_models import UserProfile

 

三、在settings裏面指定自定義表的位置，django會默認去models文件裏去找相應的表 （app名+表名）

AUTH_USER_MODEL = 'collect_app.UserProfile'

　　

此時，在用Manage.py建立用戶時，就是自定義的建立過程

 

2、在Django Admin裏面顯示自定義的用戶表

要把自定義的用戶表在Django admin裏面顯示，須要稍加修改並註冊到admin裏

 

一、建立user_admin.py用來重寫admin。

二、建立用戶顯示的UserAdmin類方法，並將其中的字段與自定義用戶表的字段對應

三、建立更改用戶和建立用戶的類方法

#!/usr/bin/env python
# _*_coding:utf-8_*_

from django import forms
from django.contrib import admin
from django.contrib.auth.models import Group
from django.contrib.auth.admin import UserAdmin as BaseUserAdmin
from django.contrib.auth.forms import ReadOnlyPasswordHashField

from collect_app.models import UserProfile  # 導入自定義的用戶表


class UserCreationForm(forms.ModelForm):
    """A form for creating new users. Includes all the required
    fields, plus a repeated password."""
    password1 = forms.CharField(label='Password', widget=forms.PasswordInput)
    password2 = forms.CharField(label='Password confirmation', widget=forms.PasswordInput)

    class Meta:    # 將其關聯到UserProfile表
        model = UserProfile
        fields = ('email', 'name')

    def clean_password2(self):   # 判斷兩次密碼輸入
        # Check that the two password entries match
        password1 = self.cleaned_data.get("password1")
        password2 = self.cleaned_data.get("password2")
        if password1 and password2 and password1 != password2:
            raise forms.ValidationError("Passwords don't match")
        return password2

    def save(self, commit=True):
        # Save the provided password in hashed format
        user = super(UserCreationForm, self).save(commit=False)  # 繼承父類的save方法 並重寫
        user.set_password(self.cleaned_data["password1"])
        if commit:
            user.save()   # 保存建立的密碼
        return user


class UserChangeForm(forms.ModelForm):
    """A form for updating users. Includes all the fields on
    the user, but replaces the password field with admin's
    password hash display field.
    """
    password = ReadOnlyPasswordHashField()

    class Meta:
        model = UserProfile   # 將其關聯到UserProfile表
        fields = ('email', 'password', 'name', 'is_active', 'is_admin')

    def clean_password(self):
        # Regardless of what the user provides, return the initial value.
        # This is done here, rather than on the field, because the
        # field does not have access to the initial value
        return self.initial["password"]


class UserAdmin(BaseUserAdmin):
    # The forms to add and change user instances
    form = UserChangeForm   # 修改用戶信息
    add_form = UserCreationForm   # 建立用戶信息

    # The fields to be used in displaying the User model.
    # These override the definitions on the base UserAdmin
    # that reference specific fields on auth.User.
    list_display = ('email', 'name', 'is_admin')   # 顯示的字段
    list_filter = ('is_admin',)
    fieldsets = (                                  # 分行顯示
        (None, {'fields': ('email', 'password')}),
        ('Personal info', {'fields': ('name',)}),
        ('Permissions', {'fields': ('is_admin',)}),
    )
    # add_fieldsets is not a standard ModelAdmin attribute. UserAdmin
    # overrides get_fieldsets to use this attribute when creating a user.
    add_fieldsets = (
        (None, {
            'classes': ('wide',),  #  顯示樣式
            'fields': ('email', 'name', 'password1', 'password2')}   # 建立用戶時顯示的字段
        ),
    )
    search_fields = ('email',)   # 按email搜索
    ordering = ('email',)
    filter_horizontal = ()

# Now register the new UserAdmin...
# admin.site.register(UserProfile, UserAdmin)
# ... and, since we're not using Django's built-in permissions,
# unregister the Group model from admin.
admin.site.unregister(Group)   # 不顯示Group

user_admin.py

 

四、將自定義UserAdmin的方法註冊到admin裏面

from user_admin import UserAdmin
admin.site.register(models.UserProfile, UserAdmin)  # 將自定義的Admin註冊到自定義的用戶表中。

 

 

至此，再次登陸django admin時，用戶的信息就是咱們自定義的信息。包括修改和建立用戶時，都是咱們自定義的內容。