一个简单的rest_framework demo

时间:2023-03-09 16:11:41
一个简单的rest_framework demo

models.py

from django.db import models

class UserInfo(models.Model):

    username = models.CharField(max_length=32)

    password = models.CharField(max_length=32)

    role_choice = ((1,'管理员'),(2,'普通用户'))

    role = models.IntegerField(choices=role_choice)

class BWH(models.Model):

    '''三围信息'''

    bust = models.IntegerField(verbose_name='胸围')

    waist = models.IntegerField(verbose_name='腰围')

    hips = models.IntegerField(verbose_name='臀围')

    user = models.OneToOneField(to=UserInfo)

  

serializers.py

from rest_framework import serializers

from app01 import models

class BWHModelSerializer(serializers.ModelSerializer):

    class Meta:

        model = models.BWH

        fields = '__all__'

class UserModelSerializer(serializers.ModelSerializer):

    class Meta:

        model = models.UserInfo

        fields = '__all__'

  

permission.py

from rest_framework.permissions import BasePermission

from app01 import models

class AdminPermission(BasePermission):

    '''管理员权限认证'''

    message = '您没有权限访问!'

    def has_permission(self, request, view):

        user_id = request.GET.get('uid')

        user = models.UserInfo.objects.filter(pk=user_id).first()

        if not user or user.role == 2:

            return False

        else:

            return True

  

auth.py

from rest_framework.authentication import BaseAuthentication

from rest_framework.exceptions import AuthenticationFailed

from app01 import models

class BlackNameAuth(BaseAuthentication):

    '''黑名单认证'''

    def authenticate(self, request):

        BLACK_NAME_LIST = ['小花', '小翠']

        # 通过从url获取user_id的方式模拟用户登录

        user_id = request.GET.get('uid')

        user = models.UserInfo.objects.filter(pk=user_id).first()

        if not user or user.username in BLACK_NAME_LIST:

            raise AuthenticationFailed('您没有登录或者被关小黑屋啦')

        else:

            return user.username,user_id

  

urls.py

from django.conf.urls import url,include

from django.contrib import admin

from rest_framework import routers

from app01 import views

# 实例化一个routers对象

routers = routers.DefaultRouter()

# 往对象里注册(添加)url

routers.register('bwh',views.BWHViewSet)

routers.register('user',views.UserViewSet)

urlpatterns = [

    url(r'^admin/', admin.site.urls),

    url(r'',include(routers.urls))

]

  

view.py

from app01.serializers import BWHModelSerializer

from app01.serializers import UserModelSerializer

from rest_framework.viewsets import ModelViewSet

from app01 import models

from app01.auth import BlackNameAuth

from app01.permission import AdminPermission

from rest_framework.pagination import PageNumberPagination

class MyPagination(PageNumberPagination):

    '''分页,自定义每页显示2条'''

    page_size = 2

class BWHViewSet(ModelViewSet):

    '''在黑名单中的用户禁止查看三围信息'''

    authentication_classes = [BlackNameAuth]

    # 分页

    pagination_class = MyPagination

    serializer_class = BWHModelSerializer

    queryset = models.BWH.objects.all()

class UserViewSet(ModelViewSet):

    '''非管理员禁止查看用户信息'''

    permission_classes = [AdminPermission]

    # 分页

    pagination_class = MyPagination

    serializer_class = UserModelSerializer

    queryset = models.UserInfo.objects.all()

  

相关文章