自定义后端验证
class MyBackend(ModelBackend):
def authenticate(self, request, username=None, password=None, phone=None, email=None):
if username and password:
# user = super(MyBackend, self).authenticate(request, username=username, password=password)
user = super().authenticate(request, username=username, password=password)
print('=====----账号-----=====')
if user:
return user
else:
print('=====----手机-----=====')
if (phone or email) and password:
user = UserProfile.objects.filter(Q(phone=phone) | Q(email=email)).first()
if user:
print('=====----密码-----=====')
if user.check_password(password):
return user
else:
print('======', user.check_password(password))
登录页面函数
class Login(APIView):
def post(self, request):
username = request.POST.get('username')
user = UserProfile.objects.filter(Q(username=username) | Q(phone=username) | Q(email=username)).first()
print('user=====', user)
if not user:
return Response({'msg': '该用户不存在,请注册', "status": 403})
print('------', user.is_active, user) # ----- True
if user.is_active == False:
return JsonResponse({'msg': '用户尚未激活,请激活', "status": 403})
password = request.POST.get('password')
user = authenticate(username=username, password=password, phone=username, email=username)
# 需要激活后,并且账号密码正确才是TURE
print('==========++', user)
if user:
# 表示用户登陆了,向session添加用户名
login(request, user)
serializer = UserProfileSerializer(user)
# print('+++++',serializer.data.get('email'))
data = {
"msg": "登录成功!",
"status": 200,
}
return Response(data)
return Response({"msg": "账号或密码有误,请重新输入!", "status": 403, })