源码分析:三大认证组件的封装
组件的认证配置:
模型层:models.py
class User(BaseModel):
username = models.CharField(verbose_name='用户名', max_length=32)
password = models.CharField(verbose_name='密码', max_length=64)
class Car(BaseModel):
name = models.CharField(verbose_name='汽车品牌', max_length=32)
price = models.DecimalField(verbose_name='价格', max_digits=11, decimal_places=2, default=1.00)
序列化层:serializer.py
from rest_framework import serializers
from . import models
class UsersModelSerializer(serializers.ModelSerializer):
class Meta:
model = models.User
fields = ('username', 'password')
extra_kwargs = {}
class CarsModelSerializer(serializers.ModelSerializer):
class Meta:
model = models.Car
fields = ('name', 'price')
extra_kwargs = {}
路由层:urls,.py
from django.conf.urls import url, include
from . import views
urlpatterns = [
url(r'^users/(?P\d+)/', views.UsersRetrieveAPIView.as_view()),
url(r'^cars/$', views.CarsGenericViewSet.as_view({'get': 'list'})),
url(r'^cars/(?P\d+)/', views.CarsGenericViewSet.as_view({'get': 'retrieve'})),
]
视图层:views.py
from rest_framework import generics, viewsets, mixins
from . import models, serializers
# 局部禁用:视图类中 authentication_classes 字段可以完成局部控制
class UsersRetrieveAPIView(generics.RetrieveAPIView):
# 局部解除认证
authentication_classes = ()
queryset = models.User.objects.filter(is_delete=False)
serializer_class = serializers.UsersModelSerializer
from . import authentication
class CarsGenericViewSet(mixins.RetrieveModelMixin, mixins.ListModelMixin, viewsets.GenericViewSet):
# 局部完成禁用
authentication_classes = (authentication.TokenAuthentication, )
queryset = models.Car.objects.filter(is_delete=False)
serializer_class = serializers.CarsModelSerializer
