- 此中间件对后台网址访问做了是否登录的判断
- 关于网站后台要求:只要访问的URL地址是以 "/admin" 开头的都会执行是否登录判断验证。
(1). 在myadmin应用中创建中间件
- 创建文件:
myobject/myadmin/shopmiddleware.py
, 代码如下:
# 自定义中间件类
from django.shortcuts import redirect
from django.urls import reverse
import re
class ShopMiddleware(object):
def __init__(self, get_response):
self.get_response = get_response
# One-time configuration and initialization.
print("ShopMiddleware")
def __call__(self, request):
# 获取当前请求路径
path = request.path
#print("mycall..."+path)
# 后台请求路由判断
# 定义网站后台不用登录也可访问的路由url
urllist = ['/myadmin/login','/myadmin/dologin','/myadmin/logout','/myadmin/verify']
# 判断当前请求是否是访问网站后台,并且path不在urllist中
if re.match(r"^/myadmin",path) and (path not in urllist):
# 判断当前用户是否没有登录
if "adminuser" not in request.session:
# 执行登录界面跳转
return redirect(reverse('myadmin_login'))
# 请求继续执行下去
response = self.get_response(request)
# Code to be executed for each request/response after
# the view is called.
return response
(2). 将自定义的中间件注册到项目中
- 编辑
myobject/settings.py
配置文件, 添加如下代码
...
MIDDLEWARE = [
'django.middleware.security.SecurityMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
'myadmin.shopmiddleware.ShopMiddleware', #注册中间件
]
...
(3). 配置路由、模板并测试中间件
- 3.1 配置路由
myobject/myadmin/urls.py
加入如下代码
....
# 后台管理员路由
path('login', index.login, name="myadmin_login"),
path('dologin', index.dologin, name="myadmin_dologin"),
path('logout', index.logout, name="myadmin_logout"),
#path('verify', index.verify, name="myadmin_verify"), #验证码
....
- 3.2 编写视图
myobject/myadmin/views/index.py
文件 并加入如下代码:
...
# ==============后台管理员操作====================
# 会员登录表单
def login(request):
return render(request,'myadmin/index/login.html')
# 会员执行登录
def dologin(request):
pass
# 会员退出
def logout(request):
pass
...
- 3.3 创建登录模板文件:
templates/myadmin/index/login.html
代码如下:
{% load static from staticfiles %}
<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<title>后台管理登录界面</title>
<!-- 支持响应式布局 -->
<meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport">
<link rel="stylesheet" href="{% static 'myadmin/bower_components/bootstrap/dist/css/bootstrap.min.css' %}">
<!-- 象形字体 -->
<link rel="stylesheet" href="{% static 'myadmin/bower_components/font-awesome/css/font-awesome.min.css' %}">
<!-- 图标 -->
<link rel="stylesheet" href="{% static 'myadmin/bower_components/Ionicons/css/ionicons.min.css' %}">
<!-- 主题风格样式 -->
<link rel="stylesheet" href="{% static 'myadmin/dist/css/AdminLTE.min.css' %}">
<!-- AdminLTE 皮肤.这里选择的是skin-blue样式,我们还可以有其他皮肤可以选择. -->
<link rel="stylesheet" href="{% static 'myadmin/dist/css/skins/skin-blue.min.css' %}">
<!-- 兼容IE9以下浏览器 -->
<!--[if lt IE 9]>
<script src="{% static 'myadmin/local/js/html5shiv.min.js' %}"></script>
<script src="{% static 'myadmin/local/js/respond.min.js' %}"></script>
<![endif]-->
<!-- Google Font -->
<link rel="stylesheet" href="{% static 'myadmin/local/css/google_fonts.css' %}">
</head>
<body class="hold-transition login-page">
<div class="login-box">
<div class="login-logo">
<a href="index2.html"><b>餐饮系统后台管理</b></a>
</div>
<!-- /.login-logo -->
<div class="login-box-body">
<p class="login-box-msg" style="color:red">登录账号或密码错误!</p>
<form action="index2.html" method="post">
<div class="form-group has-feedback">
<input type="text" class="form-control" placeholder="账号">
<span class="glyphicon glyphicon-user form-control-feedback"></span>
</div>
<div class="form-group has-feedback">
<input type="password" class="form-control" placeholder="密码">
<span class="glyphicon glyphicon-lock form-control-feedback"></span>
</div>
<div class="form-group has-feedback">
<input type="text" class="form-control" style="width:150px" placeholder="验证码">
<span class="form-control-feedback" style="width:150px">
<img src="{% static 'myadmin/dist/img/verify.png' %}"/>
</span>
</div>
<div class="row">
<div class="col-xs-12">
<button type="submit" class="btn btn-primary btn-block btn-flat">登录</button>
</div>
<!-- /.col -->
</div>
</form>
</div>
<!-- /.login-box-body -->
</div>
<!-- /.login-box -->
<!-- jQuery 3 -->
<script src="{% static 'myadmin/bower_components/jquery/dist/jquery.min.js' %}"></script>
<!-- Bootstrap 3.3.7 -->
<script src="{% static 'myadmin/bower_components/bootstrap/dist/js/bootstrap.min.js' %}"></script>
</body>
</html>
(4). 启动服务测试,网站后台就进不去了,统一调跳转登录页面中