实现django的自定义用户认证1

要想自定义用户认证的话，首先UserProfile账户表不能再与django的User表OneToOne关联了，djangoproject网址提供了我们重新自定义的实现方法，先来到这个网站https://docs.djangoproject.com/en/2.1/topics/auth/customizing/，ctrl+F找到 MyUser这个类

image.png

必须得把整个类都复制下来，我们可以把 MyUser 改成自己的 UserProfile，这里 email 就是登陆的账号，你也可以改成其它的如姓名，这里我们就用email了，date_of_birth 字段可以删掉，作用不大，为了好区分，我们还可以加上一个 name 字段。 is_active 代表账户是不是活跃的，is_admin代表账户是不是管理员，objects 可以先不用看把它注释，不过由于前面把date_of_birth换成了name，这个类里所有的date of birth都得换了，整理后就是这样

class UserProfile(AbstractBaseUser):
    email = models.EmailField(
        verbose_name='email address',
        max_length=255,
        unique=True,
    )

    name = models.CharField(max_length=32)
    is_active = models.BooleanField(default=True)
    is_admin = models.BooleanField(default=False)

    objects = UserProfileManager()

    USERNAME_FIELD = 'email'
    REQUIRED_FIELDS = ['name']

    def __str__(self):
        return self.email

    def has_perm(self, perm, obj=None):
        "Does the user have a specific permission?"
        # Simplest possible answer: Yes, always
        return True

    def has_module_perms(self, app_label):
        "Does the user have permissions to view the app `app_label`?"
        # Simplest possible answer: Yes, always
        return True

    @property
    def is_staff(self):
        "Is the user a member of staff?"
        # Simplest possible answer: All admins are staff
        return self.is_admin

如果你的数据库前面已经有数据了，那就得先删库了(目前只会的操作)。删完库后开始makemigrations二连，现在就可以创建一个超级用户进入admin了。但是，，，点击 UserProfile 表报错，没找到，

是因为django不知道哪个是账户表，可能有人说UserProfile不是继承了一个 AbstractBaseUser 类吗？AbstractBaseUser也仅仅只是一个model类，没法做到这个，现在我们要去settings里明确地告诉 django ，哪个是我的用户表。在settings最末尾加上AUTH_USER_MODEL = 'crm.UserProfile'就可以了，crm是app名字

现在我们再重新来一遍migrate,会报出下面的警告，意思是需不需要把django自己的User表给删掉，我们敲上yes就行

image.png

现在再来创建超级用户，

image.png

刚输入完email又报错了！输完email应该是要输入密码的才对，那这是什么原因呢？密码其实是需要一个方法来实现的，比如密码需要输入两次啊，什么的。虽然UserProfile用户表写好了，但是如何创建用户我们还没有写，所以现在得加上。


在我们前面复制MyUser类的上面还有一个 MyUserManager类，把它也复制到models中,和上面一样，也对date_of_birth与name对换一下

class UserProfileManager(BaseUserManager):
    def create_user(self, email, name, password=None):
        """
        Creates and saves a User with the given email, date of
        birth and password.
        """
        if not email:
            raise ValueError('Users must have an email address')

        user = self.model(
            email=self.normalize_email(email),
            name=name,
        )
        user.is_active = True
        user.set_password(password)
        user.save(using=self._db)
        return user

    def create_superuser(self, email, name, password):
        """
        Creates and saves a superuser with the given email, date of
        birth and password.
        """
        user = self.create_user(
            email,
            password=password,
            name=name,
        )
        user.is_admin = True
        user.save(using=self._db)
        return user

这个时候我们在MyUser里注释的objects就得解开了！
现在需要继续makemigrations了，可有有时候会保一个django_admin_log的错误，只需要在migrate后面加上--fake。


不过不会显示UserProfile表，只有在admin中加上下面代码，才能够对表进行操作，这段代码在djangoproject中也有

class UserCreationForm(forms.ModelForm):
    """A form for creating new users. Includes all the required
    fields, plus a repeated password."""
    password1 = forms.CharField(label='Password', widget=forms.PasswordInput)
    password2 = forms.CharField(label='Password confirmation', widget=forms.PasswordInput)

    class Meta:
        model = models.UserProfile
        fields = ('email', 'name')

    def clean_password2(self):
        # Check that the two password entries match
        password1 = self.cleaned_data.get("password1")
        password2 = self.cleaned_data.get("password2")
        if password1 and password2 and password1 != password2:
            raise forms.ValidationError("Passwords don't match")
        return password2

    def save(self, commit=True):
        # Save the provided password in hashed format
        user = super().save(commit=False)
        user.set_password(self.cleaned_data["password1"])
        if commit:
            user.save()
        return user


class UserChangeForm(forms.ModelForm):
    """A form for updating users. Includes all the fields on
    the user, but replaces the password field with admin's
    password hash display field.
    """
    password = ReadOnlyPasswordHashField()

    class Meta:
        model = models.UserProfile
        fields = ('email', 'password', 'name', 'is_active', 'is_admin')

    def clean_password(self):
        # Regardless of what the user provides, return the initial value.
        # This is done here, rather than on the field, because the
        # field does not have access to the initial value
        return self.initial["password"]


class UserProfileAdmin(BaseUserAdmin):
    # The forms to add and change user instances
    form = UserChangeForm
    add_form = UserCreationForm

    # The fields to be used in displaying the User model.
    # These override the definitions on the base UserAdmin
    # that reference specific fields on auth.User.
    list_display = ('email', 'name', 'is_admin')
    list_filter = ('is_admin',)
    fieldsets = (
        (None, {'fields': ('email', 'password')}),
        ('Personal info', {'fields': ('name',)}),
        ('Permissions', {'fields': ('is_admin',)}),
    )
    # add_fieldsets is not a standard ModelAdmin attribute. UserAdmin
    # overrides get_fieldsets to use this attribute when creating a user.
    add_fieldsets = (
        (None, {
            'classes': ('wide',),
            'fields': ('email', 'name', 'password1', 'password2')}
        ),
    )
    search_fields = ('email',)
    ordering = ('email',)
    filter_horizontal = ()

# Now register the new UserAdmin...
admin.site.register(models.UserProfile, UserProfileAdmin)