我希望用户能够使用他们的电子邮件进行注册,并且一旦通过身份验证,他们应该能够添加社交帐户,并将社交帐户链接到当前经过身份验证的用户。即使电子邮件不同(在用户和社交帐户之间),链接也应该发生。
- 一个社交帐户不能链接到多个用户。
- 我对用户 FB 帐户数据并不真正感兴趣,但我想访问他们的页面指标。
- 我正在将 Django 与 Django rest 框架一起使用。
- 我还得到了一个自定义用户模型,以电子邮件而不是用户名作为键
我最初的尝试(最相关的部分):
文件结构
[app]/
├── [app]/
│ ├── __init__.py
│ ├── settings.py
│ ├── urls.py
│ └── wsgi.py
├── facebook/
│ |── __init__.py
| ├── urls.py
| ├── serializer.py
| └── views.py
├── manage.py
├── README.txt
├── static/
└── README
设置.py
INSTALLED_APPS = [
'django.contrib.admin',
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'whitenoise.runserver_nostatic',
'django.contrib.staticfiles',
'corsheaders',
'accounts',
'rest_framework',
'django_rest_passwordreset',
'social_django',
'facebook'
]
MIDDLEWARE = [
'django.middleware.security.SecurityMiddleware',
'whitenoise.middleware.WhiteNoiseMiddleware',
'social_django.middleware.SocialAuthExceptionMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'corsheaders.middleware.CorsMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
]
AUTHENTICATION_BACKENDS = (
'social_core.backends.facebook.FacebookOAuth2',
'django.contrib.auth.backends.ModelBackend',
)
ROOT_URLCONF = 'jicaBackend.urls'
TEMPLATES = [
{
'BACKEND': 'django.template.backends.django.DjangoTemplates',
'DIRS': [],
'APP_DIRS': True,
'OPTIONS': {
'context_processors': [
'django.template.context_processors.debug',
'django.template.context_processors.request',
'django.contrib.auth.context_processors.auth',
'django.contrib.messages.context_processors.messages',
'social_django.context_processors.backends',
'social_django.context_processors.login_redirect'
],
},
},
]
AUTH_USER_MODEL = 'accounts.User'
REST_FRAMEWORK = {
'DEFAULT_AUTHENTICATION_CLASSES': [
'rest_framework_simplejwt.authentication.JWTAuthentication',
]
}
EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
SOCIAL_AUTH_USER_MODEL = 'accounts.User'
SOCIAL_AUTH_URL_NAMESPACE = 'social'
SOCIAL_AUTH_JSONFIELD_ENABLED = True
SOCIAL_AUTH_FACEBOOK_KEY = os.environ.get('SOCIAL_AUTH_FACEBOOK_KEY')
SOCIAL_AUTH_FACEBOOK_SECRET = os.environ.get('SOCIAL_AUTH_FACEBOOK_SECRET')
SOCIAL_AUTH_FACEBOOK_SCOPE = [
'email',
'pages_read_engagement',
'pages_read_user_content'
]
SOCIAL_AUTH_FACEBOOK_PROFILE_EXTRA_PARAMS = {'fields': 'id, name, email' }
AUTHENTICATION_BACKENDS = (
'social_core.backends.facebook.FacebookOAuth2',
'django.contrib.auth.backends.ModelBackend',
)
SOCIAL_AUTH_PIPELINE = (
'social_core.pipeline.social_auth.social_details',
'social_core.pipeline.social_auth.social_uid',
'social_core.pipeline.social_auth.auth_allowed',
'social_core.pipeline.social_auth.social_user',
'social_core.pipeline.user.get_username',
'social_core.pipeline.social_auth.associate_by_email',
#'social_core.pipeline.user.create_user',
'social_core.pipeline.social_auth.associate_user',
'social_core.pipeline.social_auth.load_extra_data',
'social_core.pipeline.user.user_details',
)
脸书\view.py
from django.contrib.auth import login
from django.http import JsonResponse
from rest_framework import generics, permissions, status, views
from rest_framework.response import Response
from requests.exceptions import HTTPError
from rest_framework_simplejwt.settings import api_settings
from social_django.utils import load_strategy, load_backend
from social_core.backends.oauth import BaseOAuth2
from social_core.exceptions import MissingBackend, AuthTokenError, AuthForbidden
from . import serializer
class SocialLoginView(generics.GenericAPIView):
"""Log in using facebook"""
serializer_class = serializer.SocialSerializer
permission_classes = [permissions.AllowAny]
def post(self, request):
"""Authenticate user through the provider and access_token"""
serializer = self.serializer_class(data=request.data)
serializer.is_valid(raise_exception=True)
provider = serializer.data.get('provider', None)
strategy = load_strategy(request)
try:
backend = load_backend(strategy=strategy, name=provider,
redirect_uri=None)
except MissingBackend:
return Response({'error': 'Please provide a valid provider'},
status=status.HTTP_400_BAD_REQUEST)
try:
if isinstance(backend, BaseOAuth2):
access_token = serializer.data.get('access_token')
user = backend.do_auth(access_token)
except HTTPError as error:
return Response({
"error": {
"access_token": "Invalid token",
"details": str(error)
}
}, status=status.HTTP_400_BAD_REQUEST)
except AuthTokenError as error:
return Response({
"error": "Invalid credentials",
"details": str(error)
}, status=status.HTTP_400_BAD_REQUEST)
try:
authenticated_user = backend.do_auth(access_token, user=user)
except HTTPError as error:
return Response({
"error":"invalid token",
"details": str(error)
}, status=status.HTTP_400_BAD_REQUEST)
except AuthForbidden as error:
return Response({
"error":"invalid token",
"details": str(error)
}, status=status.HTTP_400_BAD_REQUEST)
if authenticated_user and authenticated_user.is_active:
#generate JWT token
login(request, authenticated_user)
data={
"token": api_settings.jwt_encode_handler(
api_settings.jwt_payload_handler(user)
)}
#customize the response to your needs
response = {
"email": authenticated_user.email,
"token": data.get('token')
}
return Response(status=status.HTTP_200_OK, data=response)
脸书\serializer.py
from rest_framework.serializers import CharField, Serializer
class SocialSerializer(Serializer):
"""
Serializer which accepts an OAuth2 access token and provider.
"""
provider = CharField(max_length=255, required=True)
access_token = CharField(max_length=4096, required=True, trim_whitespace=True)
脸书\urls.py
from django.urls import path, include
from .views import SocialLoginView
urlpatterns = [
path('login/', SocialLoginView.as_view())
]