配置Token
from itsdangerous import URLSafeTimedSerializer as utsr
import base64
from django.conf import settings as django_settings
class Token:
def __init__(self, security_key):
self.security_key = security_key
self.salt = base64.encodebytes(security_key.encode('utf8'))
def generate_validate_token(self, username):
serializer = utsr(self.security_key)
return serializer.dumps(username, self.salt)
def confirm_validate_token(self, token, expiration=3600):
serializer = utsr(self.security_key)
return serializer.loads(token, salt=self.salt, max_age=expiration)
def remove_validate_token(self, token):
serializer = utsr(self.security_key)
print(serializer.loads(token, salt=self.salt))
return serializer.loads(token, salt=self.salt)
token_confirm = Token(django_settings.SECRET_KEY)
配置settings
EMAIL_HOST = 'smtp.163.com'
EMAIL_PORT = 25
EMAIL_HOST_USER = 'Zz_lzk@163.com'
EMAIL_HOST_PASSWORD = 'INKCXEUXHBFVELTK'
EMAIL_FROM = 'python<Zz_lzk@163.com>'
EMAIL_BACKEND = 'django.core.mail.backends.smtp.EmailBackend'
SERVER_EMAIL = EMAIL_HOST_USER
路由函数
def check_user(request):
if request.method =='POST':
username = request.POST.get('username')
password = request.POST.get('password')
user = User.objects.filter(username=username,password=password).first()
if user:
return HttpResponse("用户已经存在")
user = User.objects.create(username=username,password=password,is_active=0)
token = token_confirm.generate_validate_token(user.uid)
print(token)
url = "http://"+request.get_host()+reverse("App:activeuser",kwargs={'token':token})
html = loader.get_template('active.html').render({'url':url})
print(url)
send_mail("账号激活",'',EMAIL_FROM,['Zz_lzk@163.com'],html_message=html)
return HttpResponse("激活邮件已经发送,请登录邮箱确认激活")
return render(request,'register.html')
def active_user(request,token):
try:
uid = token_confirm.confirm_validate_token(token)
except Exception as e:
print(e)
try:
uid = token_confirm.remove_validate_token(token)
user = User.objects.get(pk=uid)
user.delete()
except:
pass
return HttpResponse("激活失败,请重新注册")
try:
user = User.objects.get(pk=uid)
except User.DoesNotExist:
return HttpResponse("你激活的用户不存在,请重新注册")
user.is_active = 1
user.save()
return HttpResponse("用户已激活,请登录系统")