堆栈内存溢出
  简体   繁体   English

Django 使用带有 djoser 的电子邮件身份验证进行登录

[英]Django using email authentication with djoser for login

 原文  2017-11-09 08:13:34       django/ authentication/ login/ django-rest-framework

问题描述

So i tried using djoser recently and i want to use email instead of username to login.所以我最近尝试使用 djoser,我想使用电子邮件而不是用户名登录。

Djoser : http://djoser.readthedocs.io/en/latest/index.html乔瑟: http : //djoser.readthedocs.io/en/latest/index.html

Then i try to customise the token create/login to change from username to email in the serializers.py然后我尝试自定义令牌创建/登录以在 serializers.py 中从用户名更改为电子邮件

Original原来的

class TokenCreateSerializer(serializers.Serializer):
password = serializers.CharField(
    required=False, style={'input_type': 'password'}
    )

    default_error_messages = {
        'invalid_credentials': constants.INVALID_CREDENTIALS_ERROR,
        'inactive_account': constants.INACTIVE_ACCOUNT_ERROR,
    }

    def __init__(self, *args, **kwargs):
        super(TokenCreateSerializer, self).__init__(*args, **kwargs)
    self.user = None
    self.fields[User.USERNAME_FIELD] = serializers.CharField(
        required=False
    )

def validate(self, attrs):
    self.user = authenticate(
        username=attrs.get(User.USERNAME_FIELD),
        password=attrs.get('password')
        )

        self._validate_user_exists(self.user)
        self._validate_user_is_active(self.user)
        return attrs

    def _validate_user_exists(self, user):
        if not user:
            self.fail('invalid_credentials')

    def _validate_user_is_active(self, user):
        if not user.is_active:
            self.fail('inactive_account')

Edited已编辑

class TokenCreateSerializer(serializers.Serializer):
password = serializers.CharField(
    required=False, style={'input_type': 'password'}
    )

    default_error_messages = {
        'invalid_credentials': constants.INVALID_CREDENTIALS_ERROR,
        'inactive_account': constants.INACTIVE_ACCOUNT_ERROR,
    }

    def __init__(self, *args, **kwargs):
        super(TokenCreateSerializer, self).__init__(*args, **kwargs)
    self.user = None
    self.fields[User.EMAIL_FIELD] = serializers.EmailField(
        required=False
    )

def validate(self, attrs):
    self.user = authenticate(
        email=attrs.get(User.EMAIL_FIELD),
        password=attrs.get('password')
        )

        self._validate_user_exists(self.user)
        self._validate_user_is_active(self.user)
        return attrs

    def _validate_user_exists(self, user):
        if not user:
            self.fail('invalid_credentials')

    def _validate_user_is_active(self, user):
        if not user.is_active:
            self.fail('inactive_account')

but the result i get in the api is this但我在 api 中得到的结果是这样的

{
"non_field_errors": [
    "Unable to login with provided credentials."
]

I did try other method but all have same result.我确实尝试过其他方法,但结果都相同。 Is there a way to make it using of email to authenticate instead of username ?有没有办法让它使用电子邮件而不是用户名进行身份验证?

2 个解决方案

解决方案1
 7 已采纳  2017-11-09 08:42:23

Djoser uses authenticate method from django.contrib.auth . Djoser使用来自django.contrib.auth authenticate方法。 By default the AUTHENTICATION_BACKENDS is set to use django.contrib.auth.backends.ModelBackend which will try to get the user model using default manager get_by_natural_key method, which does:默认情况下, AUTHENTICATION_BACKENDS设置为使用django.contrib.auth.backends.ModelBackend它将尝试使用默认管理器get_by_natural_key方法获取用户模型,它执行:

def get_by_natural_key(self, username):
    return self.get(**{self.model.USERNAME_FIELD: username})

You can check the source code for this.您可以为此检查源代码

My approach on this was to enhance django's UserManager , assuming your User model is subclass of AbstractUser , by trying to get the user by email or username, like this:我对此的方法是增强 django 的UserManager ,假设您的User模型是AbstractUser子类,通过尝试通过电子邮件或用户名获取用户,如下所示:

from django.contrib.auth.models import UserManager
from django.db.models import Q

class CustomUserManager(UserManager):

    def get_by_natural_key(self, username):
        return self.get(
            Q(**{self.model.USERNAME_FIELD: username}) |
            Q(**{self.model.EMAIL_FIELD: username})
        )

Use that in your User model在您的User模型中使用它

from django.contrib.auth.models import AbstractUser

class User(AbstractUser):
    ...
    objects = CustomUserManager()

You should now be able to login using email or username您现在应该可以使用电子邮件或用户名登录

解决方案2
 5  2020-06-20 14:34:00

I was looking for the answer to this question and came across this thread!我正在寻找这个问题的答案并遇到了这个线程!

Everything works, but then I found an even simpler solution:一切正常,但后来我找到了一个更简单的解决方案:

DJOSER = {
    'LOGIN_FIELD': 'email'
}

I don't know, maybe someone will need it!我不知道,也许有人会需要它!

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 使用凭据和djoser测试Django API登录 - Testing Django API login using credentials and djoser Django Djoser 令牌身份验证不起作用 - Django Djoser Token Authentication not working Django 忍者令牌认证与 djoser - Django ninja token authentication with djoser Django Djoser:Email 地址复位 - Django Djoser: Email address reset 使用django-email-login进行身份验证但禁用电子邮件验证 - Using django-email-login for authentication but disabling email verification 带有电子邮件确认的 Django djoser 用户注册 - Django djoser user registration with email confirmation 使用电子邮件登录 Django - Django login using email Facebook 和 Google 身份验证过程在 Django Rest 框架中使用 Djoser 取消,Next.js+React 作为前端 - Facebook and Google Authentication process cancelled using Djoser in Django Rest framework with Next.js+React as frontend 在Django中使用电子邮件登录 - Using Email as login in Django 使用 Djoser Django Rest 对用户进行序列化和反序列化 - Serializing and Deserialzing User using Djoser Django Rest
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM