2. 程式人生 > >Django Rest Framework--oauth實驗筆記--參考官方文件

Django Rest Framework--oauth實驗筆記--參考官方文件

阿新 發佈:2019-02-11

Getting started
Django OAuth Toolkit provide a support layer for Django REST Framework. This tutorial is based on the Django REST Framework example and shows you how to easily integrate with it.
NOTE
The following code has been tested with django 1.7.7 and Django REST Framework 3.1.1
第一步:安裝配置
Step 1: Minimal setup
Create a virtualenv and install following packages using pip…
pip install django-oauth-toolkit djangorestframework
A–自己新建一個專案,配置apps和rest框架

Start a new Django project and add ‘rest_framework’ and ‘oauth2_provider’ to your INSTALLED_APPS setting.

INSTALLED_APPS = (
    'django.contrib.admin',
    ...
    'oauth2_provider',
    'rest_framework',
)

Now we need to tell Django REST Framework to use the new authentication backend. To do so add the following lines at the end of your settings.py module:

REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': (
        'oauth2_provider.contrib.rest_framework.OAuth2Authentication',
    )
}

第二步:建立簡單的受oauth保護的api
Step 2: Create a simple API
Let’s create a simple API for accessing users and groups.
Here’s our project’s root urls.py module:

from
 
 django.conf.urls import url, include
from django.contrib.auth.models import User, Group
from django.contrib import admin
admin.autodiscover()    # 高版本不需要

from rest_framework import permissions, routers, serializers, viewsets

from oauth2_provider.contrib.rest_framework import TokenHasReadWriteScope, TokenHasScope


# first we define the serializers
class UserSerializer(serializers.ModelSerializer):
    class Meta:
        model = User
        fields = ("username", "email", "first_name", "last_name", )


class GroupSerializer(serializers.ModelSerializer):
    class Meta:
        model = Group
        fields = ("name", )


# ViewSets define the view behavior.
class UserViewSet(viewsets.ModelViewSet):
    permission_classes = [permissions.IsAuthenticated, TokenHasReadWriteScope]
    queryset = User.objects.all()
    serializer_class = UserSerializer


class GroupViewSet(viewsets.ModelViewSet):
    permission_classes = [permissions.IsAuthenticated, TokenHasScope]
    required_scopes = ['groups']
    queryset = Group.objects.all()
    serializer_class = GroupSerializer


# Routers provide an easy way of automatically determining the URL conf
router = routers.DefaultRouter()
router.register(r'users', UserViewSet)
router.register(r'groups', GroupViewSet)

# 配置url
# Wire up our API using automatic URL routing.
# Additionally, we include login URLs for the browseable API.
urlpatterns = [
    url(r'^', include(router.urls)),
    url(r'^o/', include('oauth2_provider.urls', namespace='oauth2_provider')),
    # ...
]

#配置授權範圍
Also add the following to your settings.py module:
OAUTH2_PROVIDER = {
    # this is the list of available scopes
    'SCOPES': {'read': 'Read scope', 'write': 'Write scope', 'groups': 'Access to your groups'}
}


#配置rest許可權
REST_FRAMEWORK = {
    # ...

    'DEFAULT_PERMISSION_CLASSES': (
        'rest_framework.permissions.IsAuthenticated',
    )
}

執行一下資料庫同步

OAUTH2_PROVIDER.SCOPES setting parameter contains the scopes that the application will be aware of, so we can use them for permission check.
Now run the following commands:

python manage.py migrate
python manage.py createsuperuser
python manage.py runserver

The first command creates the tables, the second creates the admin user account and the last one runs the application.
Next thing you should do is to login in the admin at
http://localhost:8000/admin

and create some users and groups that will be queried later through our API.

第三步:註冊一個應用

這裡註冊的時候不需要,填寫回調地址
Step 3: Register an application
To obtain a valid access_token first we must register an application. DOT has a set of customizable views you can use to CRUD application instances, just point your browser at:
http://localhost:8000/o/applications/

Click on the link to create a new application and fill the form with the following data:
● Name: just a name of your choice
● Client Type: confidential
● Authorization Grant Type: Resource owner password-based
Save your app!

第四步:測試token的獲取,以及使用者資訊的訪問
Step 4: Get your token and use your API
At this point we’re ready to request an access_token. Open your shell

curl -X POST -d "grant_type=password&username=<user_name>&password=<password>" -u"<client_id>:<client_secret>" http://localhost:8000/o/token/

The user_name and password are the credential of the users registered in your :term:Authorization Server, like any user created in Step 2. Response should be something like:

{
    "access_token": "<your_access_token>",
    "token_type": "Bearer",
    "expires_in": 36000,
    "refresh_token": "<your_refresh_token>",
    "scope": "read write groups"
}

Grab your access_token and start using your new OAuth2 API:

Retrieve users

curl -H "Authorization: Bearer <your_access_token>" http://localhost:8000/users/
curl -H "Authorization: Bearer <your_access_token>" http://localhost:8000/users/1/

Retrieve groups

curl -H "Authorization: Bearer <your_access_token>" http://localhost:8000/groups/

Insert a new user

curl -H "Authorization: Bearer <your_access_token>" -X POST -d"username=foo&password=bar" http://localhost:8000/users/

自己實驗一下:

  1. 註冊自己的app
    這裡寫圖片描述

這裡寫圖片描述
2. 選擇認證型別,注意註冊成功後保留client_id和client_secret
這裡寫圖片描述

3 獲取token並且訪問資料


#  注意訪問在post表單中用認證伺服器中註冊過的賬號,而使用者用client_id和client_secret!
$ curl -X POST -d "grant_type=password&username=dev1&password=dev123456" -u"by95yDRGyBW20A9GClHzo31Me9lwnw48l4IB5hWrjOmY6WAcGiQGOQTbVR39D9HzzcrBsCthqF6k68w5waISkkbwxmTJhVsDRiRtdrGk86m7OmWeHjNt5jjlFX7qHSZpO3ILOcTkTVJ4l9" http://localhost:8000/o/token/

{"access_token": "NVAfMELJlxM1s36WjAWuPoUniFlTAb", "token_type": "Bearer", "expires_in": 36000, "refresh_token": "06hvJdUxCpc0jMe5nSMpns9A5VXZiB", "scope": "read write groups"}

$ curl -H "Authorization: Bearer NVAfMELJlxM1s36WjAWuPoUniFlTAb" http://localhost:8000/users/

[{"username":"miao","email":"","first_name":"","last_name":""},{"username":"dev1","email":"","first_name":"","last_name":""},{"username":"dev2","email":"","first_name":"","last_name":""}]

$ curl -H "Authorization: Bearer NVAfMELJlxM1s36WjAWuPoUniFlTAb" http://localhost:8000/users/1/

{"username":"miao","email":"","first_name":"","last_name":""}

$ curl -H "Authorization: Bearer NVAfMELJlxM1s36WjAWuPoUniFlTAb" http://localhost:8000/groups/

[{"name":"superuser"},{"name":"normal"}]

相關推薦

Django Rest Framework--oauth實驗筆記--參考官方

Getting started Django OAuth Toolkit provide a support layer for Django REST Framework. This tutorial is based on the Django RES

django-rest-framework(DRF)閱讀筆記

list safe 到你 .get 得到 html 方法 url include 1.安裝: pip install django pip install djangorestframework pip install pygments # 此模塊用來使

django-rest-framework(DRF)閱讀筆記2

retrieve objects response snippet 1.2 更新 example 端點 參數 1.Wrapping API views 1.1 @api_view 用於處理基於函數的視圖. 1.2 APIView 用於處理基於類的視圖.2.

DRF Django REST framework 之 路由器與版本控制組(七)

路由器 一些Web框架提供了用於自動確定應如何將應用程式的URL對映到處理傳入請求的邏輯的功能。 而DRF的路由器元件也提供了一種簡單,快速且一致的方式將檢視邏輯對映到一組URL上。 路由器元件的使用配合include 第一步:匯入模組 from rest_framework import routers

使用log4j最好參考官方

java專案中經常要加一些log,這樣方便定位軟體所出現的問題。利用開源的log4j能達到這個目的。 這個包在哪下載? http://logging.apache.org/log4j/2.x/ http://logging.apache.org/log4j/1.2/download.

圖解Activity啟動模式-參考官方

launchMode: 1.standard 如果啟動該Activity的context是Activity,則新建一個Activity例項,該target Activity在source Activity的Task中。如果啟動改Activity的context不是Activity,則新建一個

gradle學習筆記(六) 官方筆記+理解

前言 接著學習筆記(五),這篇文章是官方文件的筆記,和自己的一些理解。看了好幾天,終於發現一個比較能夠講清楚的邏輯: User Guide第三大章都有必要看 看完User Guide直接看Gradle Build Language Reference即資料

django-rest-framework筆記-請求與響應篇

python ica ror nic patch cnblogs coo fix ria 一、請求對象 request.POST # 處理表單數據. 限於POST請求. request.data # 處理任意數據. 對 ‘POST‘, ‘PUT‘ and ‘

django-rest-framework筆記-類視圖篇

object span pos all stc cnblogs man ews rom snippet/url.py from django.conf.urls import url from rest_framework.urlpatterns import

Django REST framework+Vue 打造生鮮電商項目(筆記二)

開始 allow 動作 false 做到 category gef eric ocs (轉自https://www.cnblogs.com/derek1184405959/p/8768059.html)(有修改) 接下來開始引入django resfulframework,

Django REST framework+Vue 打造生鮮電商專案(筆記四)

 (PS:部分程式碼和圖片來自部落格:http://www.cnblogs.com/derek1184405959/p/8813641.html。有增刪) 一、使用者登入和手機註冊 1、drf的token功能 (前言:為什麼有了session了,還要用token呢?因為每次認證使用者發起請求時

Django REST framework+Vue 打造生鮮電商項目(筆記四)

相關 部署 www. requests ted 本地ip hand ice 用戶信息 (PS:部分代碼和圖片來自博客:http://www.cnblogs.com/derek1184405959/p/8813641.html。有增刪) 一、用戶登錄和手機註冊 1、drf的

Django REST framework+Vue 打造生鮮電商專案(筆記五)

一、viewsets實現商品詳情頁介面 (1)商品詳情頁只需要多繼承一個類(mixins.RetrieveModelMixin)就可以了,(它的功能就是展示商品詳情) class GoodsListViewSet(mixins.ListModelMixin, mixins.RetrieveModel

Django REST framework+Vue 打造生鮮電商專案(筆記六)

九、個人中心功能開發1、drf的api文件自動生成(1) url #drf文件,title自定義 path('docs',include_docs_urls(title='火影忍者')), 訪問:http://127.0.0.1:8000/docs  就可以自動生成 &

Django REST framework+Vue 打造生鮮電商項目(筆記六)

文檔 generic 測試 spa 商品列表 objects req color ets 九、個人中心功能開發1、drf的api文檔自動生成(1) url #drf文檔,title自定義 path(‘docs‘,include_docs_urls(title=‘火影忍者‘

Django REST framework+Vue 打造生鮮電商專案(筆記九)

(from:http://www.cnblogs.com/derek1184405959/p/8859309.html) 十二、支付寶沙箱環境配置 12.1.建立應用 進入螞蟻金服開放平臺(https://open.alipay.com/platform/home.htm),登入後進入管理中心-->

Django REST framework+Vue 打造生鮮電商專案(筆記八)

(form:http://www.cnblogs.com/derek1184405959/p/8862569.html) 十一、pycharm 遠端程式碼除錯 第三方登入和支付,都需要有伺服器才行(回撥url),我們可以用pycharm去遠端除錯伺服器程式碼 伺服器環境搭建 以全新阿里雲centos7

Django REST framework+Vue 打造生鮮電商專案(筆記十)

 (from:https://www.cnblogs.com/derek1184405959/p/8877643.html  有修改) 十三、首頁、商品數量、快取和限速功能開發 首先把pycharm環境改成本地的,vue中local_host也改成本地 1、輪播圖介面實現 (1)g

Django REST framework電商專案筆記】第05章 商品列表頁功能開發(下)

drf中的request和response drf 對 Django 的 request 和 response 進行了封裝 瀏覽器請求的 request 會被 drf 封裝擴充套件為標準的 http request 在基本的 httpRequest 上擴充套件,

Django REST framework電商專案筆記】第06章 商品類別功能

將drf返回的資料對映到vue介面思路 1、處理商品的分類 2、目錄會有兩個介面 一個是全部資料的介面,用於首頁的全部分類,一級-二級-三級 另一個是獲取某一類的分類,以及商品數量 3、為商品通過大類進行過濾條件的過濾。價格,銷量的排序,分頁 開發商品類別介