需求

1 有车型(CarModel),车厂(CarFactory),经销商(Distributor)三个表,一个车厂可以生产多种车型,一个经销商可以出售多种车型,一个车型可以有多个经销商出售

  车型:车型名,车型出厂价,车厂id

  车厂:车厂名,车厂地址,联系电话

  经销商:经销商名,地址,联系电话

2 有用户表,基于django内置user表,扩展mobile字段

3 编写登陆接口,jwt方式返回token,

	格式为{status:100,msg:登陆成功,token:safasdfa}

3 有管理员登陆后可以新增,删除车型,车厂,经销商

2 普通用户登陆可以查看车型(群查分页,单查)

	查车型:返回车型信息,车厂名字,经销商名字和电话

加分项:

用户注册接口

管理员有用户锁定,删除功能

settings.py

INSTALLED_APPS = [

    'django.contrib.admin',

    'django.contrib.auth',

    'django.contrib.contenttypes',

    'django.contrib.sessions',

    'django.contrib.messages',

    'django.contrib.staticfiles',

    'rest_framework',

    'rest_framework_jwt',

    'app01',

]

AUTH_USER_MODEL = 'app01.UserInfo'

import datetime

JWT_AUTH = {

    # 'JWT_RESPONSE_PAYLOAD_HANDLER': 'app01.utils.jwt_response_payload_handler',

    'JWT_EXPIRATION_DELTA': datetime.timedelta(days=7),

}

views.py

from django.contrib import auth

from rest_framework.generics import ListAPIView, RetrieveAPIView, CreateAPIView, UpdateAPIView, \

    DestroyAPIView

from rest_framework.viewsets import ViewSet, ViewSetMixin, GenericViewSet

from .permissions import AdminPermission

from .serializers import CarModelSerializer, CarFactorySerializer, DistributorSerializer

from .models import CarModel, CarFactory, Distributor, UserInfo

from rest_framework.decorators import action

from rest_framework_jwt.settings import api_settings

from rest_framework.response import Response

from .authenticate import JsonWebTokenAuthentication

from .page import CommonCursorPagination

jwt_payload_handler = api_settings.JWT_PAYLOAD_HANDLER

jwt_encode_handler = api_settings.JWT_ENCODE_HANDLER

# 车型

class CarModelView(ViewSetMixin, ListAPIView, RetrieveAPIView):

    serializer_class = CarModelSerializer

    queryset = CarModel.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    pagination_class = CommonCursorPagination

class CarModelDetailView(ViewSetMixin, CreateAPIView, UpdateAPIView, DestroyAPIView):

    serializer_class = CarModelSerializer

    queryset = CarModel.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    permission_classes = [AdminPermission, ]

    pagination_class = CommonCursorPagination

# 车厂

class CarFactoryView(ViewSetMixin, ListAPIView, RetrieveAPIView):

    serializer_class = CarFactorySerializer

    queryset = CarFactory.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    pagination_class = CommonCursorPagination

class CarFactoryDetailView(ViewSetMixin, CreateAPIView, UpdateAPIView, DestroyAPIView):

    serializer_class = CarFactorySerializer

    queryset = CarFactory.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    permission_classes = [AdminPermission, ]

    pagination_class = CommonCursorPagination

# 经销商

class DistributorView(ViewSetMixin, ListAPIView, RetrieveAPIView):

    serializer_class = DistributorSerializer

    queryset = Distributor.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    pagination_class = CommonCursorPagination

class DistributorDetailView(ViewSetMixin, CreateAPIView, UpdateAPIView, DestroyAPIView):

    serializer_class = DistributorSerializer

    queryset = Distributor.objects.all()

    authentication_classes = [JsonWebTokenAuthentication, ]

    permission_classes = [AdminPermission, ]

    pagination_class = CommonCursorPagination

class LoginView(ViewSet):

    @action(methods=['POST'], detail=False)

    def login(self, request, *args, **kwargs):

        username = request.data.get('username')

        password = request.data.get('password')

        user = auth.authenticate(request, username=username, password=password)

        if user:

            # 登录成功,签发token

            # 通过user得到payload

            payload = jwt_payload_handler(user)

            # 通过payload得到token

            token = jwt_encode_handler(payload)

            return Response({'code': 1000, 'msg': '登录成功', 'token': token})

        else:

            return Response({'code': 1001, 'msg': '用户名或密码错误'})

# 注册接口

class RegisterView(ViewSet, CreateAPIView):

    @action(methods=['POST'], detail=False)

    def register(self, request, *args, **kwargs):

        username = request.data.get('username')

        password = request.data.get('password')

        user = UserInfo.objects.filter(username=username).first()

        if user:

            return Response({'code': 1000, 'msg': '用户名已存在'})

        else:

            UserInfo.objects.create_user(username=username, password=password)

            return Response({'code': 1001, 'msg': '注册成功'})

urls.py



from django.contrib import admin

from django.urls import path

from rest_framework.routers import SimpleRouter

from app01 import views

router = SimpleRouter()

# 车型

router.register('api/v1/car_model', views.CarModelView, 'car_model')

router.register('api/v1/car_model_admin', views.CarModelDetailView, 'car_model_admin')

# 车厂

router.register('api/v1/car_factory', views.CarFactoryView, 'car_factory')

router.register('api/v1/car_factory_admin', views.CarFactoryDetailView, 'car_factory_admin')

# 经销商

router.register('api/v1/distributor', views.DistributorView, 'distributor')

router.register('api/v1/distributor_admin', views.DistributorDetailView, 'distributor_admin')

# 登录

router.register('api/v1', views.LoginView, '')

# 注册

router.register('api/v1/user', views.RegisterView, 'user')

urlpatterns = [

    path('admin/', admin.site.urls),

]

urlpatterns += router.urls

serializers.py

from rest_framework import serializers

from .models import CarModel, CarFactory, Distributor

class CarModelSerializer(serializers.ModelSerializer):

    class Meta:

        model = CarModel

        fields = ['name', 'price', 'factory_detail', 'distributor_list', 'factory', 'distributors']

        extra_kwargs = {

            'factory_detail': {'read_only': True},

            'distributor_list': {'read_only': True},

            'factory': {'write_only': True},

            'distributors': {'write_only': True},

        }

class CarFactorySerializer(serializers.ModelSerializer):

    class Meta:

        model = CarFactory

        fields = ['name', 'address', 'phone']

class DistributorSerializer(serializers.ModelSerializer):

    class Meta:

        model = Distributor

        fields = ['name', 'address', 'phone']

permissions.py

from rest_framework.permissions import BasePermission

class AdminPermission(BasePermission):

    def has_permission(self, request, view):

        if request.user.is_superuser == 1:

            return True

        else:

            self.message = '您没有权限'

            return False

page.py

from rest_framework.pagination import CursorPagination

class CommonCursorPagination(CursorPagination):

    cursor_query_param = 'cursor'  # 查询参数

    page_size = 5  # 每页多少条

    ordering = 'id'  # 排序字段

authenticate.py

from rest_framework.authentication import BaseAuthentication

from rest_framework.exceptions import AuthenticationFailed

import jwt

from .models import UserInfo

from rest_framework_jwt.settings import api_settings

jwt_decode_handler = api_settings.JWT_DECODE_HANDLER

class JsonWebTokenAuthentication(BaseAuthentication):

    def authenticate(self, request):

        token = request.META.get('HTTP_TOKEN')

        if token:

            try:

                payload = jwt_decode_handler(token)

                user = UserInfo.objects.get(pk=payload.get('user_id'))

                return user, token

            except jwt.ExpiredSignature:

                raise AuthenticationFailed('token过期')

            except jwt.DecodeError:

                raise AuthenticationFailed('token认证失败')

            except jwt.InvalidTokenError:

                raise AuthenticationFailed('token无效')

            except Exception as e:

                raise AuthenticationFailed('未知异常')

        raise AuthenticationFailed('token没有传,认证失败')

model.py

from django.db import models

from django.db import models

from django.contrib.auth.models import AbstractUser

class UserInfo(AbstractUser):

    # 填写AbstractUser表中没有的字段

    phone = models.BigIntegerField(null=True)

class CarModel(models.Model):

    name = models.CharField(max_length=32)

    price = models.CharField(max_length=32)

    factory = models.ForeignKey(to='CarFactory', on_delete=models.CASCADE)

    distributors = models.ManyToManyField(to='Distributor')

    def factory_detail(self):

        return {'name': self.factory.name, 'address': self.factory.address, 'phone': self.factory.phone}

    def distributor_list(self):

        return [{'name': distr.name, 'address': distr.address, 'phone': distr.phone}

                for distr in self.distributors.all()]

class CarFactory(models.Model):

    name = models.CharField(max_length=32)

    address = models.TextField(max_length=32)

    phone = models.CharField(max_length=32)

class Distributor(models.Model):

    name = models.CharField(max_length=32)

    address = models.TextField(max_length=32)

    phone = models.CharField(max_length=32)

权限类判断请求方式



注意:

【django drf】 阶段练习的更多相关文章

  1. 解决Django + DRF:403 FORBIDDEN:CSRF令牌丢失或不正确,{"detail":"CSRF Failed: CSRF cookie not set."}

    我有一个Android客户端应用程序尝试使用Django + DRF后端进行身份验证.但是,当我尝试登录时,我收到以下响应: 403: CSRF Failed: CSRF token missing ...

  2. django DRF理解

    django restframework(DRF) 最近的开发过程当中,发现restframework的功能很强大,所以尝试解读了一下源码,写篇博客分享给大家,有错误的地方还请各位多多指出 视图部分 ...

  3. Django DRF 分页

    Django DRF 分页 分页在DRF当中可以一共有三种,可以通过setttings设置,也可也通过自定义设置 PageNumberPagination 使用URL http://127.0.0.1 ...

  4. django drf 基础学习3

    一 简述 这里来谈下一些基本原理 二 汇总 1 restful规范 1 根据method不同做不同的操作          request.method='          get(获取) 返回完整 ...

  5. django drf 基础学习2

    DRF基本程序调用一 models初步编写  1 编写model.py    from django.db import models 导入    class dbinfo(models.Model) ...

  6. django drf 基础学习1

    一 环境配置    python3.5+ django2.0 pymysql二 安装   /usr/bin/python3 -m pip install django   /usr/bin/pytho ...

  7. [django]drf知识点梳理-搜索

    什么是搜索? 譬如http://127.0.0.1:8000/User/?username=maotai-0 可以检索出想要的. 自己实现原始的搜索 重写下get_queryset方法 class U ...

  8. Django + DRF + Elasticsearch 实现搜索功能

    django使用haystack来调用Elasticsearch搜索引擎  如何使用django来调用Elasticsearch实现全文的搜索 Haystack为Django提供了模块化的搜索.它的特 ...

  9. django drf unique_together和UniqueTogetherValidator

    联合唯一可以使用django中的unique_together,和DRF中的UniqueTogetherValidator->https://www.django-rest-framework. ...

  10. django drf JWT

    建议使用djangorestframework-jwt或者djangorestframework_simplejwt,文档为 https://github.com/GetBlimp/django-re ...

随机推荐

  1. JavaScript高级程序设计笔记04 变量、作用域与内存

    变量.作用域与内存 变量 特定时间点一个特定值的名称. 分类 原始值:按值访问 复制:两个独立使用.互不干扰 引用值(由多个值构成的对象):按引用访问 操作对象时,实际上操作的是对该对象的引用(ref ...

  2. 线性表应用:魔术师发牌与拉丁(Latin)方阵(循环链表)

    题目描述: 有黑桃1到13,13张牌,成某种顺序,魔术师可以从1开始数 ,数1,背面朝上的13张牌第一张就是1,然后放到桌面上,然后从1开始数,把第一张放在所有牌下面,数到2,翻开,就是2,再放到桌子 ...

  3. 字符串分割(String.Split)时连同分隔符一起返回

    今天有个群友问了这个问题:"字符串分割时,如何连同分隔符一起返回?". 我这里写了个String扩展类,模仿原生的Split方法,与原生Split方法的区别在于多了个返回分隔符的枚 ...

  4. 用友vs金蝶产品分析(云星空与YonSuite)

    产品定位 用友与金蝶二者面对的客户群体是相同的:都是为成长型企业提供一体化服务,由于金蝶云星空发展较早,在部分产品功能上具备一定的先发优势:在产品的架构上,由于YS采用目前最先进的云原生和微服务架构, ...

  5. 通过Span实现高性能数组,实例解析

    Span<T> 是 C# 7.2 引入的一个强大的数据结构,用于表示内存中的一块连续数据.它可以用于实现高性能的数组操作,而无需额外的内存分配.在本文中,我将详细介绍如何使用 Span&l ...

  6. Python批量改文件名

    对以下路径中的文件名批量修改. 一.读取指定路径中的文件名 #导入标准库 import os #读取文件名 filesDir = "路径--" fileNameList = os. ...

  7. SpringBoot实战项目:蚂蚁爱购(从零开发)

    ​ 简介 这是从零开发的SpringBoot实战项目,名字叫蚂蚁爱购. 从零开发项目,视频加文档,十天彻底掌握开发SpringBoot项目. 教程路线是:搭建环境=> 安装软件=> 创建项 ...

  8. 踩坑:nacos启动报错提示需要设置JDK环境 ,报错:ERROR: Please set the JAVA_HOME variable in your environment, We need java(x64)! jdk8 or later is better! !!

    换了个Windows11的新电脑,因为个人工作.学习需要,就重新下载了Nacos并解压使用,结果就踩了个坑,使用下面命令启动Nacos服务端时: startup.cmd -m standalone 直 ...

  9. GoFrame Goland插件

    前言 GoFrame 是一款模块化.高性能.企业级的 Go 基础开发框架.GoFrame 是一款通用性的基础开发框架,是 Golang 标准库的一个增强扩展级,包含通用核心的基础开发组件,优点是实战化 ...

  10. CVE-2022-39197 复现

    CVE-2022-39197 ️漏洞介绍 Cobalt Strike (CS) 是一个为对手模拟和红队行动而设计的平台,相当于增强版的Armitage,早期以Metasploit为基础框架,3.0版本 ...