我正在尝试使用 djangorestframework-jwt 创建登录视图。当我登录我的用户(url 'login/')时,一切正常,但切换到另一个页面(url 'post_list')创建一个帖子我得到了一个我的用户是匿名的错误,所以我决定我的用户再次未经身份验证。您能否帮我创建正确的 JWT 登录视图,让我可以毫无障碍地创建和切换不同的页面?
我的设置.py:
REST_FRAMEWORK = {
'DEFAULT_AUTHENTICATION_CLASSES': [
'rest_framework_jwt.authentication.JSONWebTokenAuthentication',
],
'DEFAULT_PERMISSION_CLASSES': [
'rest_framework.permissions.DjangoModelPermissionsOrAnonReadOnly'
],
}
我的序列化器:
class TokenSerializer(serializers.Serializer):
username = serializers.CharField(max_length=128)
password = serializers.CharField(write_only=True,
required=True,
style={
'input_type': 'password',
'placeholder': 'password'
})
class PostSerializer(serializers.ModelSerializer):
created_by = serializers.ReadOnlyField(source='created_by.username')
class Meta:
model = Post
fields = '__all__'
我的看法:
class UserLogin(generics.CreateAPIView):
"""
POST login/
"""
permission_classes = (permissions.AllowAny,)
queryset = User.objects.all()
serializer_class = TokenSerializer
def post(self, request, *args, **kwargs):
username = request.data.get("username", "")
password = request.data.get("password", "")
user = auth.authenticate(request, username=username, password=password)
if user is not None:
auth.login(request, user)
return Response({
"token": jwt_encode_handler(jwt_payload_handler(user)),
'username': username,
}, status=200)
return Response(status=status.HTTP_401_UNAUTHORIZED)
class PostView(generics.ListCreateAPIView):
"""
POST, GET post_list/
"""
serializer_class = PostSerializer
queryset = Post.objects.all()
def perform_create(self, serializer):
serializer.save(created_by=self.request.user)
permission_classes = (permissions.IsAuthenticatedOrReadOnly, )
网址:
urlpatterns = [
url(r'^register/$', UserRegistration.as_view(), name='registration'),
url(r'^login/$', UserLogin.as_view(), name='user_login'),
url(r'^post_list/$', PostView.as_view(), name='post_list'),
]