Django's
authentication system can serve the most common needs like handling wide range of tasks, implementation of
passwords and permissions etc.
My second module
of the GSoC project is the migration of authentication app to class based
views. Authentication app used function based view for login and logout process
earlier which was bit lengthy. The following was the function based view used
for authentication purpose earlier.
auhentication/views.py
from authentication.forms import AuthenticationForm from django.contrib.auth import authenticate, login, logout from django.contrib.auth.decorators import login_required, user_passes_test from django.core.urlresolvers import reverse from django.http import HttpResponse, HttpResponseRedirect from django.shortcuts import render def index(request): return HttpResponse("Hello world") def login_process(request): if request.method == 'POST': authentication_form = AuthenticationForm(request.POST) if authentication_form.is_valid(): username = request.POST.get('username') password = request.POST.get('password') user = authenticate(username=username, password=password) if user: if user.is_active: login(request, user) return HttpResponseRedirect(reverse('home:index')) else: return HttpResponse("Your account is disabled.") else: return render(request, 'authentication/login.html', {'authentication_form' : authentication_form, 'is_invalid_credentials' : True,}) else: return render(request, 'authentication/login.html', {'authentication_form' : authentication_form,}) else: return render(request, 'authentication/login.html', {'is_invalid_credentials' : False,}) @login_requireddef logout_process(request): logout(request) return HttpResponseRedirect(reverse('home:index')
authentication/urls.py
It can be written in a simpler way using Django's built in auth views. The rewritten code for authentication is as follows.from django.conf.urls import patterns, url from authentication import views urlpatterns = patterns('', url(r'^$', views.index, name='index'), url(r'^login/$', views.login_process, name='login_process'), url(r'^logout/$', views.logout_process, name='logout_process'), )
Create a views.py
in vms
vms/views.py
anonymous_required is the conventional decorator that allows the programmer to restrict access to some views only to logged in usersfrom django.shortcuts import redirect from django.views.generic.edit import FormView from django.core.mail import send_mail from django.core.mail.message import BadHeaderError from django.http.response import HttpResponse from vms import settings def anonymous_required(func): def as_view(request, *args, **kwargs): redirect_to = kwargs.get('next', settings.LOGIN_REDIRECT_URL ) if request.user.is_authenticated(): return redirect(redirect_to) response = func(request, *args, **kwargs) return response return as_view
vms/urls.pyfrom django.conf.urls import patterns, include, url from django.contrib import admin from django.views.generic import TemplateView #from importlib._bootstrap import _NamespaceLoaderfrom vms.views import anonymous_required from django.contrib.auth.decorators import login_required import registration.views as views from django.contrib.auth import views as auth_views #admin.autodiscover() urlpatterns = patterns('', url(r'^portal', TemplateView.as_view(template_name='home/home.html'),name='home'), url(r'^login/$', anonymous_required(auth_views.login), {'template_name': 'authentication/login.html'}, name='login_process'), url(r'^user/logout/$', auth_views.logout, {'template_name': 'home/home.html'}, name='logout_process'), )Assuming that you are done setting up built-in Django user authentication, add this in your settings.py. NOTE: 'home' here is the URL of the homepage. It will redirect the user to homepage once he is logged in. It is up to you what to replace it with.vms/settings.pyLOGIN_URL = reverse_lazy('auth:user_login') LOGIN_REDIRECT_URL = 'home'
No comments:
Post a Comment