堆栈内存溢出
  简体   繁体   English

get_jwt_identity() 在 Flask-JWT-Extended 中返回 None

[英]get_jwt_identity() returning None in Flask-JWT-Extended

 原文  2019-02-25 23:24:25       python/ flask/ jwt/ flask-jwt-extended

问题描述

I'm using Flask-JWT-Extended to protect my Flask API.我正在使用 Flask-JWT-Extended 来保护我的 Flask API。 After the Login, in the protected route (add-user), I call get_jwt_identity(), but it's returning None, so I'm not able to get the identity.登录后,在受保护的路由(添加用户)中,我调用 get_jwt_identity(),但它返回 None,因此我无法获取身份。

@flask_app.route('/<api_version>/login', methods=['POST'])
def login(api_version):
    print(f'login', request.form)
    response = None
    try:
        username = request.form['username']
        password = request.form['password']

        if not username:
            return jsonify({"msg": "Missing username parameter"}), 400
        if not password:
            return jsonify({"msg": "Missing password parameter"}), 400

        user = User.get_with_password(username, password)

        if (not user):
            e1 = Unauthorized(
                'Invalid username or password.  Please try again.')
            e1.status = 401
            raise e1

        """ flask_login.login_user(user, remember=True) """
        access_token = create_access_token(identity=username)
        response = json.dumps({"token": access_token}, cls=CustomJSONEncoder)
    except Exception as e:
        errMsg = f'Error Logging in user {username if username else ""}: {e}'
        status = e.status if hasattr(e, 'status') else 500
        print(f'{errMsg}')
        traceback.print_exc()
        return Response(
            json.dumps({"message": errMsg, "status": status, "stack": traceback.format_exc() }), status=status, mimetype='application/json')


    resp = Response(response, status=200, mimetype='application/json')
    return resp

@flask_app.route('/<api_version>/add-user', methods=['POST'])
@jwt_required
def add_user(api_version):
    print(f'add-user', request)
    response = None
    username = None
    password = None
    allow_admin = None
    try:
        data = request.get_json()
        print(f'add-user data', data)

        if 'username' in data:
            username = data['username']
        else:
            return jsonify({"msg": "Missing username parameter"}), 400
        if 'password' in data:
            password = data['password']
        else:
            return jsonify({"msg": "Missing password parameter"}), 400
        if 'allow_admin' in data:
            allow_admin = data['allow_admin']

        """ user = User.get_with_password(username, password)"""
        user = get_jwt_identity()
        print('user',user)

        if (not user):
            e1 = Unauthorized(
                'Invalid username or password.  Please try again.')
            e1.status = 401
            raise e1

        response = json.dumps({"user": user}, cls=CustomJSONEncoder)
    except Exception as e:
        errMsg = f'Error Adding User {username}: {e}'
        status = e.status if hasattr(e, 'status') else 500
        print(f'{errMsg}')
        traceback.print_exc()
        return Response(
            json.dumps({"message": errMsg, "status": status, "stack": traceback.format_exc() }), status=status, mimetype='application/json')


    resp = Response(response, status=200, mimetype='application/json')
    return resp

User.py用户名

class User():
    @classmethod
    def get_with_password(cls, username, password):
        print(f'User get_with_password {username} with password')
        user_db = account.get_account(username)
        print(f'User returned from DB: {user_db}')

        user = User()
        if not user_db or not len(user_db) or (not 'password' in user_db):
            return None
        user.username = username
        user.id = username

        if bcrypt.check_password_hash(user_db['password'], password):

            user.role = user_db['role']
            #user.is_authenticated = True
            print(
                f'loginUser returning {vars(user)} ')
            return user
        return None

2 个解决方案

解决方案1
 1  2019-09-24 09:45:43

I also faced same issue, in my case i forgot to add @jwt_required我也遇到了同样的问题,就我而言,我忘记添加 @jwt_required

@jwt_required
def get(self):
    uid = get_jwt_identity()
    print("self.uid",uid)

in your code @jwt_required is there, check may be token has expired在您的代码 @jwt_required 中,检查可能是令牌已过期

解决方案2
 0  2020-09-10 11:49:26

I've got the same issue and got it resolved by the following steps我遇到了同样的问题,并通过以下步骤解决了

Step1: Check if you have wrapped your app (flask_app) like the following. Step1:检查你是否像下面这样包装了你的应用程序(flask_app)。

from flask_jwt_extended import JWTManager
jwt = JWTManager(flask_app)

Step2: Check if you have JWT_BLACKLIST_ENABLED in your app or not.第 2检查您的应用中是否有 JWT_BLACKLIST_ENABLED。

If JWT_BLACKLIST_ENABLED = False or JWT_BLACKLIST_ENABLED not present in your app, add the following method above where ever you have used create_token_method() (in your case it is login method).如果您的应用程序中不存在 JWT_BLACKLIST_ENABLED = False 或 JWT_BLACKLIST_ENABLED,请在上面使用 create_token_method() 的地方添加以下方法(在您的情况下是登录方法)。

@jwt.user_claims_loader
def add_claims_to_access_token(identity):
    return {
        'identity': identity
    }

If JWT_BLACKLIST_ENABLED = True then add the following also above your login method.如果 JWT_BLACKLIST_ENABLED = True 然后在您的登录方法上方添加以下内容。

@jwt.token_in_blacklist_loader
def check_if_token_in_blacklist(decrypted_token):
    jti = decrypted_token['jti']
    return jti in blacklist

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Flask JWT:没有@jwt_required的get_jwt_identity()总是返回非 - Flask JWT : get_jwt_identity() without @jwt_required always return Non 为flask-jwt-extended获取其他用户jti - Get other user jti for flask-jwt-extended 使用 Flask-JWT-Extended 和 Flask-restx - Using Flask-JWT-Extended with Flask-restx 在使用 Flask-JWT-Extended 和 Flask-Restful 时遇到问题 - Having issues using Flask-JWT-Extended with Flask-Restful 如何解决 Flask 中的版本冲突错误(PyJWT 和 Flask-JWT-Extended) - How to resolve versionConflict error in Flask (PyJWT and Flask-JWT-Extended) gunicorn 和 flask-jwt-extended 没有获得当前用户 - gunicorn and flask-jwt-extended not getting current user flask-jwt-extended TypeError:类型为&#39;function&#39;的对象不可JSON序列化 - flask-jwt-extended TypeError: Object of type 'function' is not JSON serializable 在flask-jwt扩展的库中是否有宽限期可将其列入黑名单? - Is there a grace period for blacklisting in flask-jwt-extended library? 如何在 flask-jwt-extended 中获取当前用户(id)? - How can I get the current user(id) in flask-jwt-extended? flask-jwt-extended:测试期间的假授权标头(pytest) - flask-jwt-extended: Fake Authorization Header during testing (pytest)
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM