[英]get_jwt_identity() returning None in Flask-JWT-Extended
我正在使用 Flask-JWT-Extended 來保護我的 Flask API。 登錄后,在受保護的路由(添加用戶)中,我調用 get_jwt_identity(),但它返回 None,因此我無法獲取身份。
@flask_app.route('/<api_version>/login', methods=['POST'])
def login(api_version):
print(f'login', request.form)
response = None
try:
username = request.form['username']
password = request.form['password']
if not username:
return jsonify({"msg": "Missing username parameter"}), 400
if not password:
return jsonify({"msg": "Missing password parameter"}), 400
user = User.get_with_password(username, password)
if (not user):
e1 = Unauthorized(
'Invalid username or password. Please try again.')
e1.status = 401
raise e1
""" flask_login.login_user(user, remember=True) """
access_token = create_access_token(identity=username)
response = json.dumps({"token": access_token}, cls=CustomJSONEncoder)
except Exception as e:
errMsg = f'Error Logging in user {username if username else ""}: {e}'
status = e.status if hasattr(e, 'status') else 500
print(f'{errMsg}')
traceback.print_exc()
return Response(
json.dumps({"message": errMsg, "status": status, "stack": traceback.format_exc() }), status=status, mimetype='application/json')
resp = Response(response, status=200, mimetype='application/json')
return resp
@flask_app.route('/<api_version>/add-user', methods=['POST'])
@jwt_required
def add_user(api_version):
print(f'add-user', request)
response = None
username = None
password = None
allow_admin = None
try:
data = request.get_json()
print(f'add-user data', data)
if 'username' in data:
username = data['username']
else:
return jsonify({"msg": "Missing username parameter"}), 400
if 'password' in data:
password = data['password']
else:
return jsonify({"msg": "Missing password parameter"}), 400
if 'allow_admin' in data:
allow_admin = data['allow_admin']
""" user = User.get_with_password(username, password)"""
user = get_jwt_identity()
print('user',user)
if (not user):
e1 = Unauthorized(
'Invalid username or password. Please try again.')
e1.status = 401
raise e1
response = json.dumps({"user": user}, cls=CustomJSONEncoder)
except Exception as e:
errMsg = f'Error Adding User {username}: {e}'
status = e.status if hasattr(e, 'status') else 500
print(f'{errMsg}')
traceback.print_exc()
return Response(
json.dumps({"message": errMsg, "status": status, "stack": traceback.format_exc() }), status=status, mimetype='application/json')
resp = Response(response, status=200, mimetype='application/json')
return resp
用戶名
class User():
@classmethod
def get_with_password(cls, username, password):
print(f'User get_with_password {username} with password')
user_db = account.get_account(username)
print(f'User returned from DB: {user_db}')
user = User()
if not user_db or not len(user_db) or (not 'password' in user_db):
return None
user.username = username
user.id = username
if bcrypt.check_password_hash(user_db['password'], password):
user.role = user_db['role']
#user.is_authenticated = True
print(
f'loginUser returning {vars(user)} ')
return user
return None
我也遇到了同樣的問題,就我而言,我忘記添加 @jwt_required
@jwt_required
def get(self):
uid = get_jwt_identity()
print("self.uid",uid)
在您的代碼 @jwt_required 中,檢查可能是令牌已過期
我遇到了同樣的問題,並通過以下步驟解決了
Step1:檢查你是否像下面這樣包裝了你的應用程序(flask_app)。
from flask_jwt_extended import JWTManager
jwt = JWTManager(flask_app)
第 2步:檢查您的應用中是否有 JWT_BLACKLIST_ENABLED。
如果您的應用程序中不存在 JWT_BLACKLIST_ENABLED = False 或 JWT_BLACKLIST_ENABLED,請在上面使用 create_token_method() 的地方添加以下方法(在您的情況下是登錄方法)。
@jwt.user_claims_loader
def add_claims_to_access_token(identity):
return {
'identity': identity
}
如果 JWT_BLACKLIST_ENABLED = True 然后在您的登錄方法上方添加以下內容。
@jwt.token_in_blacklist_loader
def check_if_token_in_blacklist(decrypted_token):
jti = decrypted_token['jti']
return jti in blacklist
Flask JWT:沒有@jwt_required的get_jwt_identity()總是返回非
[英]Flask JWT : get_jwt_identity() without @jwt_required always return Non
在使用 Flask-JWT-Extended 和 Flask-Restful 時遇到問題
[英]Having issues using Flask-JWT-Extended with Flask-Restful
如何解決 Flask 中的版本沖突錯誤(PyJWT 和 Flask-JWT-Extended)
[英]How to resolve versionConflict error in Flask (PyJWT and Flask-JWT-Extended)
flask-jwt-extended TypeError:類型為'function'的對象不可JSON序列化
[英]flask-jwt-extended TypeError: Object of type 'function' is not JSON serializable
在flask-jwt擴展的庫中是否有寬限期可將其列入黑名單?
[英]Is there a grace period for blacklisting in flask-jwt-extended library?
flask-jwt-extended:測試期間的假授權標頭(pytest)
[英]flask-jwt-extended: Fake Authorization Header during testing (pytest)
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.