昨日回顾
1 前端登录,注册组件
2 分析写几个接口
-多方式登录接口(写完)
-验证码登录接口
-发送验证码接口
-验证手机号是否存在接口
-短信注册接口
3 补充:
-登录接口密码是否加密
-密码是明文,不加密(不安全)
-把密码加密(md5+base64) (也不安全)
-整个把请求体中内容加密了(比较安全)
今日内容
1 校验手机号是否存在接口
@action(methods=['GET'], detail=False)
def check_mobile(self,request):
mobile=request.query_params.get('mobile',None)
if mobile:
user=User.objects.filter(mobile=mobile).first()
if user:
return APIResponse(exisit=True)
else:
return APIResponse(exisit=False)
2 多方式登录功能前端和注销功能
2.1 Login.vue
<template>
<div class="login">
<div class="box">
<i class="el-icon-close" @click="close_login"></i>
<div class="content">
<div class="nav">
<span :class="{active: login_method === 'is_pwd'}"
@click="change_login_method('is_pwd')">密码登录</span>
<span :class="{active: login_method === 'is_sms'}"
@click="change_login_method('is_sms')">短信登录</span>
</div>
<el-form v-if="login_method === 'is_pwd'">
<el-input
placeholder="用户名/手机号/邮箱"
prefix-icon="el-icon-user"
v-model="username"
clearable>
</el-input>
<el-input
placeholder="密码"
prefix-icon="el-icon-key"
v-model="password"
clearable
show-password>
</el-input>
<el-button type="primary" @click="login_pwd">登录</el-button>
</el-form>
<el-form v-if="login_method === 'is_sms'">
<el-input
placeholder="手机号"
prefix-icon="el-icon-phone-outline"
v-model="mobile"
clearable
@blur="check_mobile">
</el-input>
<el-input
placeholder="验证码"
prefix-icon="el-icon-chat-line-round"
v-model="sms"
clearable>
<template slot="append">
<span class="sms" @click="send_sms">{{ sms_interval }}</span>
</template>
</el-input>
<el-button type="primary">登录</el-button>
</el-form>
<div class="foot">
<span @click="go_register">立即注册</span>
</div>
</div>
</div>
</div>
</template>
<script>
export default {
name: "Login",
data() {
return {
username: '',
password: '',
mobile: '',
sms: '',
login_method: 'is_pwd',
sms_interval: '获取验证码',
is_send: false,
}
},
methods: {
close_login() {
this.$emit('close')
},
go_register() {
this.$emit('go')
},
change_login_method(method) {
this.login_method = method;
},
check_mobile() {
if (!this.mobile) return;
if (!this.mobile.match(/^1[3-9][0-9]{9}$/)) {
this.$message({
message: '手机号有误',
type: 'warning',
duration: 1000,
onClose: () => {
this.mobile = '';
}
});
return false;
}
this.is_send = true;
},
send_sms() {
if (!this.is_send) return;
this.is_send = false;
let sms_interval_time = 60;
this.sms_interval = "发送中...";
let timer = setInterval(() => {
if (sms_interval_time <= 1) {
clearInterval(timer);
this.sms_interval = "获取验证码";
this.is_send = true;
} else {
sms_interval_time -= 1;
this.sms_interval = `${sms_interval_time}秒后再发`;
}
}, 1000);
},
login_pwd() {
if (this.username && this.password) {
this.$http.post(this.$settings.base_url + '/api/user/login/', {
username: this.username,
password: this.password
}).then(res => {
if (res.data.code == 100) {
this.$cookie.set('token', res.data.token, '7d')
this.$cookie.set('username', res.data.username, '7d')
this.$emit('close')
} else {
this.$message({
message: res.data.msg[0],
type: 'error'
})
}
})
} else {
this.$message({
message: '用户名或密码没有填',
type: 'warning'
})
}
},
}
}
</script>
<style scoped>
.login {
width: 100vw;
height: 100vh;
position: fixed;
top: 0;
left: 0;
z-index: 10;
background-color: rgba(0, 0, 0, 0.3);
}
.box {
width: 400px;
height: 420px;
background-color: white;
border-radius: 10px;
position: relative;
top: calc(50vh - 210px);
left: calc(50vw - 200px);
}
.el-icon-close {
position: absolute;
font-weight: bold;
font-size: 20px;
top: 10px;
right: 10px;
cursor: pointer;
}
.el-icon-close:hover {
color: darkred;
}
.content {
position: absolute;
top: 40px;
width: 280px;
left: 60px;
}
.nav {
font-size: 20px;
height: 38px;
border-bottom: 2px solid darkgrey;
}
.nav > span {
margin: 0 20px 0 35px;
color: darkgrey;
user-select: none;
cursor: pointer;
padding-bottom: 10px;
border-bottom: 2px solid darkgrey;
}
.nav > span.active {
color: black;
border-bottom: 3px solid black;
padding-bottom: 9px;
}
.el-input, .el-button {
margin-top: 40px;
}
.el-button {
width: 100%;
font-size: 18px;
}
.foot > span {
float: right;
margin-top: 20px;
color: orange;
cursor: pointer;
}
.sms {
color: orange;
cursor: pointer;
display: inline-block;
width: 70px;
text-align: center;
user-select: none;
}
</style>
2.2 Header.vue
<template>
<div class="header">
<div class="slogan">
<p>老男孩IT教育 | 帮助有志向的年轻人通过努力学习获得体面的工作和生活</p>
</div>
<div class="nav">
<ul class="left-part">
<li class="logo">
<router-link to="/">
<img src="../assets/img/head-logo.svg" alt="">
</router-link>
</li>
<li class="ele">
<span @click="goPage('/course')" :class="{active: url_path === '/course'}">免费课</span>
</li>
<li class="ele">
<span @click="goPage('/actual-course')" :class="{active: url_path === '/actual-course'}">实战课</span>
</li>
<li class="ele">
<span @click="goPage('/light-course')" :class="{active: url_path === '/light-course'}">轻课</span>
</li>
</ul>
<div class="right-part">
<div v-if="!username">
<span @click="put_login">登录</span>
<span class="line">|</span>
<span @click="put_register">注册</span>
</div>
<div v-else>
<span>{{username}}</span>
<span class="line">|</span>
<span @click="logout">注销</span>
</div>
</div>
</div>
<Login v-if="is_login" @close="close_login" @go="put_register"/>
<Register v-if="is_register" @close="close_register" @go="put_login"/>
</div>
</template>
<script>
import Login from "./Login";
import Register from "./Register";
export default {
name: "Header",
data() {
return {
username:'',
url_path: sessionStorage.url_path || '/',
is_login: false,
is_register: false,
}
},
methods: {
goPage(url_path) {
if (this.url_path !== url_path) {
this.$router.push(url_path);
}
sessionStorage.url_path = url_path;
},
put_login() {
this.is_login = true;
this.is_register = false;
},
put_register() {
this.is_login = false;
this.is_register = true;
},
close_login() {
this.is_login = false;
this.username = this.$cookie.get('username')
},
close_register() {
this.is_register = false;
},
logout(){
this.$cookie.remove('username')
this.$cookie.remove('token')
this.username=''
}
},
created() {
sessionStorage.url_path = this.$route.path;
this.url_path = this.$route.path;
this.username=this.$cookie.get('username')
},
components: {
Register,
Login
}
}
</script>
<style scoped>
.header {
background-color: white;
box-shadow: 0 0 5px 0 #aaa;
}
.header:after {
content: "";
display: block;
clear: both;
}
.slogan {
background-color: #eee;
height: 40px;
}
.slogan p {
width: 1200px;
margin: 0 auto;
color: #aaa;
font-size: 13px;
line-height: 40px;
}
.nav {
background-color: white;
user-select: none;
width: 1200px;
margin: 0 auto;
}
.nav ul {
padding: 15px 0;
float: left;
}
.nav ul:after {
clear: both;
content: '';
display: block;
}
.nav ul li {
float: left;
}
.logo {
margin-right: 20px;
}
.ele {
margin: 0 20px;
}
.ele span {
display: block;
font: 15px/36px '微软雅黑';
border-bottom: 2px solid transparent;
cursor: pointer;
}
.ele span:hover {
border-bottom-color: orange;
}
.ele span.active {
color: orange;
border-bottom-color: orange;
}
.right-part {
float: right;
}
.right-part .line {
margin: 0 10px;
}
.right-part span {
line-height: 68px;
cursor: pointer;
}
</style>
3 腾讯云短信功能使用,发送短信接口
3.1 API接口和sdk
1 api接口,第三方提供的一个个的http的接口:腾讯会提供api接口
2 sdk,第三方基于api接口,封装的代码,发送短信,腾讯云也提供了sdk (如果有sdk,优先用sdk)
-腾讯发送短信,python提供了两个版本的sdk
-3.x:不仅仅包含发送短信,还包含其他云服务业务
-2.x:只有发送短信业务(我们用这个,简洁)
3.2 短信功能封装
sms
sms_main.py
settings.py
__init__.py
from .sms_main import get_code,send_sms
APPID =
APPKEY = ""
TEMPLATE_ID =
SMS_SIGN = ""
from qcloudsms_py import SmsSingleSender
from qcloudsms_py.httpclient import HTTPError
from . import settings
import random
from luffy_api.utils.logging import get_logger
logger=get_logger()
def get_code():
s=''
for i in range(4):
num=random.randrange(0,9)
s+=str(num)
return s
def send_sms(mobile, code):
ssender = SmsSingleSender(settings.APPID, settings.APPKEY)
params = [code, ]
try:
result = ssender.send_with_param(86, mobile,
settings.TEMPLATE_ID, params, sign=settings.SMS_SIGN, extend="", ext="")
if result.get('result')==0:
return True
else:
logger.error('手机号为:%s,发送短信失败'%mobile)
return False
except Exception as e:
logger.error('发送短信出异常,异常手机号为:%s' % mobile)
return False
3.3 发送短信接口
@action(methods=['GET'], detail=False)
def send_sms(self, request):
mobile = request.query_params.get('mobile', None)
if mobile:
code = sms.get_code()
print(code)
res = sms.send_sms(mobile, code)
if res:
cache.set(settings.SMS_CACHE%mobile,code,60*10)
return APIResponse(msg='短信发送成功')
else:
raise APIException({'detail': '短信发送失败'})
else:
raise APIException({'detail': '手机号没有传'})
4 短信登录功能
4.1 视图类
@action(methods=['POST'], detail=False)
def mobile_login(self, request):
ser=UserMobileModelSerializer(data=request.data)
ser.is_valid(raise_exception=True)
token = ser.context.get('token')
username = ser.context.get('username')
icon = ser.context.get('icon')
return APIResponse(token=token, username=username, icon=icon)
4.2 序列化类
class UserMobileModelSerializer(serializers.ModelSerializer):
mobile=serializers.CharField()
code=serializers.CharField()
class Meta:
model=User
fields=['mobile','code']
def validate(self, attrs):
self._check_code(attrs)
user=self._get_user(attrs)
token=self._get_token(user)
self.context['token']=token
self.context['username']=user.username
self.context['icon']=str(user.icon)
return attrs
def _check_code(self,attrs):
code=attrs.get('code')
mobile=attrs.get('mobile')
old_code=cache.get(settings.SMS_CACHE%mobile)
if not(old_code and code==old_code):
raise ValidationError({'detail':'验证码校验失败'})
def _get_user(self,attrs):
mobile = attrs.get('mobile')
user = User.objects.filter(mobile=mobile).first()
if not user:
raise ValidationError({'detail':'用户不存在'})
return user
def _get_token(self,user):
from rest_framework_jwt.serializers import jwt_payload_handler, jwt_encode_handler
payload = jwt_payload_handler(user)
token = jwt_encode_handler(payload)
return token
5 短信注册功能
5.1 序列化类
class RegisterModelSerializer(serializers.ModelSerializer):
code = serializers.CharField(max_length=4, min_length=4)
class Meta:
model = User
fields = ['mobile', 'code', 'password']
extra_kwargs = {
'password': {'max_length': 16, 'min_length': 3},
}
def validate(self, attrs):
self._check_code(attrs)
attrs.pop('code')
return attrs
def _check_code(self, attrs):
code = attrs.get('code')
mobile = attrs.get('mobile')
old_code = cache.get(settings.SMS_CACHE % mobile)
if not (old_code and code == old_code):
raise ValidationError({'detail': '验证码校验失败'})
def create(self, validated_data):
validated_data['username'] = validated_data.get('mobile')
user = User.objects.create_user(**validated_data)
return user
5.2 视图类
class UserRegisterView(GenericViewSet, CreateModelMixin):
queryset = User.objects.all()
serializer_class = RegisterModelSerializer
def create(self, request, *args, **kwargs):
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True)
self.perform_create(serializer)
return APIResponse(msg='注册成功')
5.3 路由
router.register('register',UserRegisterView,'user_register')