[英]Unable to authenticate custom user in Django 3
我无法在 django==3.1.3 中验证自定义用户这是自定义用户管理器:
from django.contrib.auth.base_user import BaseUserManager
from django.utils.translation import ugettext_lazy as _
class CustomUserManager(BaseUserManager):
def create_user(self, username, email, password=None):
if username is None:
raise TypeError(_('Users should have a username.'))
if email is None:
raise TypeError(_('Users should have a Email.'))
user = self.model(username=username, email=self.normalize_email(email))
user.set_password(password)
user.save()
return user
def create_superuser(self, username, email, password=None):
if password is None:
raise TypeError(_('Password should not be empty.'))
user = self.create_user(username, email, password)
user.is_superuser = True
user.is_staff = True
user.save()
return user
这是 CustomUser model:
from django.db import models
from django.contrib.auth.models import AbstractBaseUser
from .managers import CustomUserManager
class CustomUser(AbstractBaseUser):
username = models.CharField(max_length=255, unique=True, db_index=True)
email = models.EmailField(max_length=255, unique=True, db_index=True)
is_verified = models.BooleanField(default=False)
is_active = models.BooleanField(default=True)
is_staff = models.BooleanField(default=False)
created_at = models.DateTimeField(auto_now_add=True)
updated_at = models.DateTimeField(auto_now=True)
USERNAME_FIELD = 'email'
REQUIRED_FIELDS = ['username']
objects = CustomUserManager()
def __str__(self):
return self.email
我在 settings.py 中添加了 AUTH_USER_MODEL = 'authentication.CustomUser' (身份验证是应用程序名称)
在 shell 中,如果我运行这些,我会得到 authenticated_user 为无:
user = CustomUser.objects.create(email='tejas@gmail.com', username='tejas12', password='tejas12')
authenticated_user = authenticate(email='tejas@gmail.com', username='tejas12', password='tejas12')
但是,使用给定的详细信息成功创建了用户。
此外,check_password 返回 False:
from django.contrib.auth.hashers import check_password
user.check_password('tejas12') # returns False
在使用 python manage.py createsuperuser 创建用户时,
authenticate返回所需的用户,而check_password返回 True
我应该如何验证自定义用户?
在您的示例中,您将用户创建为常规 Django model 不正确 hash 密码
user = CustomUser.objects.create(email='tejas@gmail.com', username='tejas12', password='tejas12')
应该使用create_user
方法
>>> second_user = CustomUser.objects.create_user(email='test@example.com', username='test', password='test_passwd')
>>> second_user.check_password('test_passwd')
True
除非您指定自己的身份验证,否则身份验证使用默认后端,并且将依赖USERNAME_FIELD
和密码
>>> from django.contrib.auth import authenticate
>>> authenticate(email='test@example.com', username='test', password='test_passwd')
>>> authenticate(email='test@example.com', password='test_passwd')
<CustomUser: test@example.com>
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.