需求

1 有车型(CarModel),车厂(CarFactory),经销商(Distributor)三个表,一个车厂可以生产多种车型,一个经销商可以出售多种车型,一个车型可以有多个经销商出售

  车型:车型名,车型出厂价,车厂id

  车厂:车厂名,车厂地址,联系电话

  经销商:经销商名,地址,联系电话

2 有用户表,基于django内置user表,扩展mobile字段

3 编写登陆接口,jwt方式返回token,

	格式为{status:100,msg:登陆成功,token:safasdfa}

3 有管理员登陆后可以新增,删除车型,车厂,经销商

2 普通用户登陆可以查看车型(群查分页,单查)

	查车型:返回车型信息,车厂名字,经销商名字和电话

加分项:

用户注册接口

管理员有用户锁定,删除功能

settings.py

INSTALLED_APPS = [

    'django.contrib.admin',

    'django.contrib.auth',

    'django.contrib.contenttypes',

    'django.contrib.sessions',

    'django.contrib.messages',

    'django.contrib.staticfiles',

    'rest_framework',

    'rest_framework_jwt',

    'app01',

]

AUTH_USER_MODEL = 'app01.UserInfo'

import datetime

JWT_AUTH = {

    # 'JWT_RESPONSE_PAYLOAD_HANDLER': 'app01.utils.jwt_response_payload_handler',

    'JWT_EXPIRATION_DELTA': datetime.timedelta(days=7),

}

views.py

from django.contrib import auth

from rest_framework.generics import ListAPIView, RetrieveAPIView, CreateAPIView, UpdateAPIView, \

    DestroyAPIView

from rest_framework.viewsets import ViewSet, ViewSetMixin, GenericViewSet

from .permissions import AdminPermission

from .serializers import CarModelSerializer, CarFactorySerializer, DistributorSerializer

from .models import CarModel, CarFactory, Distributor, UserInfo

from rest_framework.decorators import action

from rest_framework_jwt.settings import api_settings

from rest_framework.response import Response

from .authenticate import JsonWebTokenAuthentication

from .page import CommonCursorPagination

jwt_payload_handler = api_settings.JWT_PAYLOAD_HANDLER

jwt_encode_handler = api_settings.JWT_ENCODE_HANDLER

# 车型

class CarModelView(ViewSetMixin, ListAPIView, RetrieveAPIView):

    serializer_class = CarModelSerializer

    queryset = CarModel.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    pagination_class = CommonCursorPagination

class CarModelDetailView(ViewSetMixin, CreateAPIView, UpdateAPIView, DestroyAPIView):

    serializer_class = CarModelSerializer

    queryset = CarModel.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    permission_classes = [AdminPermission, ]

    pagination_class = CommonCursorPagination

# 车厂

class CarFactoryView(ViewSetMixin, ListAPIView, RetrieveAPIView):

    serializer_class = CarFactorySerializer

    queryset = CarFactory.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    pagination_class = CommonCursorPagination

class CarFactoryDetailView(ViewSetMixin, CreateAPIView, UpdateAPIView, DestroyAPIView):

    serializer_class = CarFactorySerializer

    queryset = CarFactory.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    permission_classes = [AdminPermission, ]

    pagination_class = CommonCursorPagination

# 经销商

class DistributorView(ViewSetMixin, ListAPIView, RetrieveAPIView):

    serializer_class = DistributorSerializer

    queryset = Distributor.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    pagination_class = CommonCursorPagination

class DistributorDetailView(ViewSetMixin, CreateAPIView, UpdateAPIView, DestroyAPIView):

    serializer_class = DistributorSerializer

    queryset = Distributor.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    permission_classes = [AdminPermission, ]

    pagination_class = CommonCursorPagination

class LoginView(ViewSet):

    @action(methods=['POST'], detail=False)

    def login(self, request, *args, **kwargs):

        username = request.data.get('username')

        password = request.data.get('password')

        user = auth.authenticate(request, username=username, password=password)

        if user:

            # 登录成功,签发token

            # 通过user得到payload

            payload = jwt_payload_handler(user)

            # 通过payload得到token

            token = jwt_encode_handler(payload)

            return Response({'code': 1000, 'msg': '登录成功', 'token': token})

        else:

            return Response({'code': 1001, 'msg': '用户名或密码错误'})

# 注册接口

class RegisterView(ViewSet, CreateAPIView):

    @action(methods=['POST'], detail=False)

    def register(self, request, *args, **kwargs):

        username = request.data.get('username')

        password = request.data.get('password')

        user = UserInfo.objects.filter(username=username).first()

        if user:

            return Response({'code': 1000, 'msg': '用户名已存在'})

        else:

            UserInfo.objects.create_user(username=username, password=password)

            return Response({'code': 1001, 'msg': '注册成功'})

urls.py



from django.contrib import admin

from django.urls import path

from rest_framework.routers import SimpleRouter

from app01 import views

router = SimpleRouter()

# 车型

router.register('api/v1/car_model', views.CarModelView, 'car_model')

router.register('api/v1/car_model_admin', views.CarModelDetailView, 'car_model_admin')

# 车厂

router.register('api/v1/car_factory', views.CarFactoryView, 'car_factory')

router.register('api/v1/car_factory_admin', views.CarFactoryDetailView, 'car_factory_admin')

# 经销商

router.register('api/v1/distributor', views.DistributorView, 'distributor')

router.register('api/v1/distributor_admin', views.DistributorDetailView, 'distributor_admin')

# 登录

router.register('api/v1', views.LoginView, '')

# 注册

router.register('api/v1/user', views.RegisterView, 'user')

urlpatterns = [

    path('admin/', admin.site.urls),

]

urlpatterns += router.urls

serializers.py

from rest_framework import serializers

from .models import CarModel, CarFactory, Distributor

class CarModelSerializer(serializers.ModelSerializer):

    class Meta:

        model = CarModel

        fields = ['name', 'price', 'factory_detail', 'distributor_list', 'factory', 'distributors']

        extra_kwargs = {

            'factory_detail': {'read_only': True},

            'distributor_list': {'read_only': True},

            'factory': {'write_only': True},

            'distributors': {'write_only': True},

        }

class CarFactorySerializer(serializers.ModelSerializer):

    class Meta:

        model = CarFactory

        fields = ['name', 'address', 'phone']

class DistributorSerializer(serializers.ModelSerializer):

    class Meta:

        model = Distributor

        fields = ['name', 'address', 'phone']

permissions.py

from rest_framework.permissions import BasePermission

class AdminPermission(BasePermission):

    def has_permission(self, request, view):

        if request.user.is_superuser == 1:

            return True

        else:

            self.message = '您没有权限'

            return False

page.py

from rest_framework.pagination import CursorPagination

class CommonCursorPagination(CursorPagination):

    cursor_query_param = 'cursor'  # 查询参数

    page_size = 5  # 每页多少条

    ordering = 'id'  # 排序字段

authenticate.py

from rest_framework.authentication import BaseAuthentication

from rest_framework.exceptions import AuthenticationFailed

import jwt

from .models import UserInfo

from rest_framework_jwt.settings import api_settings

jwt_decode_handler = api_settings.JWT_DECODE_HANDLER

class JsonWebTokenAuthentication(BaseAuthentication):

    def authenticate(self, request):

        token = request.META.get('HTTP_TOKEN')

        if token:

            try:

                payload = jwt_decode_handler(token)

                user = UserInfo.objects.get(pk=payload.get('user_id'))

                return user, token

            except jwt.ExpiredSignature:

                raise AuthenticationFailed('token过期')

            except jwt.DecodeError:

                raise AuthenticationFailed('token认证失败')

            except jwt.InvalidTokenError:

                raise AuthenticationFailed('token无效')

            except Exception as e:

                raise AuthenticationFailed('未知异常')

        raise AuthenticationFailed('token没有传,认证失败')

model.py

from django.db import models

from django.db import models

from django.contrib.auth.models import AbstractUser

class UserInfo(AbstractUser):

    # 填写AbstractUser表中没有的字段

    phone = models.BigIntegerField(null=True)

class CarModel(models.Model):

    name = models.CharField(max_length=32)

    price = models.CharField(max_length=32)

    factory = models.ForeignKey(to='CarFactory', on_delete=models.CASCADE)

    distributors = models.ManyToManyField(to='Distributor')

    def factory_detail(self):

        return {'name': self.factory.name, 'address': self.factory.address, 'phone': self.factory.phone}

    def distributor_list(self):

        return [{'name': distr.name, 'address': distr.address, 'phone': distr.phone}

                for distr in self.distributors.all()]

class CarFactory(models.Model):

    name = models.CharField(max_length=32)

    address = models.TextField(max_length=32)

    phone = models.CharField(max_length=32)

class Distributor(models.Model):

    name = models.CharField(max_length=32)

    address = models.TextField(max_length=32)

    phone = models.CharField(max_length=32)

权限类判断请求方式



注意:

【django drf】 阶段练习的更多相关文章

  1. 解决Django + DRF:403 FORBIDDEN:CSRF令牌丢失或不正确,{"detail":"CSRF Failed: CSRF cookie not set."}

    我有一个Android客户端应用程序尝试使用Django + DRF后端进行身份验证.但是,当我尝试登录时,我收到以下响应: 403: CSRF Failed: CSRF token missing ...

  2. django DRF理解

    django restframework(DRF) 最近的开发过程当中,发现restframework的功能很强大,所以尝试解读了一下源码,写篇博客分享给大家,有错误的地方还请各位多多指出 视图部分 ...

  3. Django DRF 分页

    Django DRF 分页 分页在DRF当中可以一共有三种,可以通过setttings设置,也可也通过自定义设置 PageNumberPagination 使用URL http://127.0.0.1 ...

  4. django drf 基础学习3

    一 简述 这里来谈下一些基本原理 二 汇总 1 restful规范 1 根据method不同做不同的操作          request.method='          get(获取) 返回完整 ...

  5. django drf 基础学习2

    DRF基本程序调用一 models初步编写  1 编写model.py    from django.db import models 导入    class dbinfo(models.Model) ...

  6. django drf 基础学习1

    一 环境配置    python3.5+ django2.0 pymysql二 安装   /usr/bin/python3 -m pip install django   /usr/bin/pytho ...

  7. [django]drf知识点梳理-搜索

    什么是搜索? 譬如http://127.0.0.1:8000/User/?username=maotai-0 可以检索出想要的. 自己实现原始的搜索 重写下get_queryset方法 class U ...

  8. Django + DRF + Elasticsearch 实现搜索功能

    django使用haystack来调用Elasticsearch搜索引擎  如何使用django来调用Elasticsearch实现全文的搜索 Haystack为Django提供了模块化的搜索.它的特 ...

  9. django drf unique_together和UniqueTogetherValidator

    联合唯一可以使用django中的unique_together,和DRF中的UniqueTogetherValidator->https://www.django-rest-framework. ...

  10. django drf JWT

    建议使用djangorestframework-jwt或者djangorestframework_simplejwt,文档为 https://github.com/GetBlimp/django-re ...

随机推荐

  1. 可怕!.Net 8正式发布了,.Net野心确实不小!

    随着三天.NET Conf 2023的会议结束了,.Net 8正式发布了. .Net 8是官方号称有史以来性能最快的一个版本了. .Net 8 增加了数以千计的性能.稳定性和安全性改进,以及平台和工具 ...

  2. 按既定顺序创建目标数组 (leetcode181周赛T1)

    给你两个整数数组 nums 和 index.你需要按照以下规则创建目标数组: 目标数组 target 最初为空. 按从左到右的顺序依次读取 nums[i] 和 index[i],在 target 数组 ...

  3. [Flink] Flink(CDC/SQL)Job在启动时,报“ConnectException: Error reading MySQL variables: Access denied for user 'xxxx '@'xxxx' (using password: YES)”(1个空格引发的"乌龙")

    1 问题描述 1.1 基本信息 所属环境:CN-PT 问题时间:2023-11-21 所属程序: Flink Job(XXXPT_dimDeviceLogEventRi) 作业类型: Flink SQ ...

  4. Java Stream中的API你都用过了吗?

    公众号「架构成长指南」,专注于生产实践.云原生.分布式系统.大数据技术分享. 在本教程中,您将通过大量示例来学习 Java 8 Stream API. Java 在 Java 8 中提供了一个新的附加 ...

  5. H.264 和 H.265对比

    前言 H.264标准正式发布于2003年3月,距今已经20多年了,但它仍然是当下最流行的视频编解码标准. H.265正式发布于2013年4月.虽然H.265标准是围绕着H.264进行制定的,也保留了原 ...

  6. SQL与NoSQL数据库选型及实际业务场景探讨

    在企业系统架构设计中,选择合适的数据库类型是一项关键决策.本文将对比SQL和NoSQL数据库的特点,分析它们在数据模型.可扩展性.一致性与事务.查询复杂性与频率,以及性能与延迟等方面的优势和劣势.同时 ...

  7. The request is not allowed by the user agent or the platform in the current context, possibly because the user denied permission,iphone手机video标签报错

    The request is not allowed by the user agent or the platform in the current context, possibly becaus ...

  8. Java并发(十八)----常见线程安全类及实例分析

    1.常见线程安全类 String Integer StringBuffer Random Vector Hashtable java.util.concurrent (JUC)包下的类 这里说它们是线 ...

  9. CICD实践1:环境安装篇

    一.CICD技术选型 配置管理工具 工具 需求管理工具 使用禅道 代码管理工具 使用Gitlab 编译构建工具 搭建Jenkins,使用Jenkinsfile 制品库工具 nexus 文档管理工具 C ...

  10. 基于winform(C#)的飞鸟小游戏

    本项目是一款基于C# (winform)版本的飞鸟小游戏,是一款益智类游戏 其效果如下图所示 如上图所示为飞鸟游戏的初始化界面: 可以看到游戏包含了四个功能: 启动 注册 登陆 排行榜 启动:是用于开 ...