如何从不同的位置检测到Django Web应用程序的多次登录? [英] How can I detect multiple logins into a Django web application from different locations?
问题描述
我想在Django应用程序中只允许一次身份验证的会话进行个人登录。因此,如果用户在给定的IP地址上登录了网页,并且使用相同的用户凭据从不同的IP地址进行登录,我想做某事(注销第一个用户或拒绝访问第二个用户。)
不知道这是否仍然需要,但以为我会分享我的解决方案:
1)安装django-tracking(谢谢你的那个提示Van Gale Google Maps + GeoIP很棒!)
2)添加这个中间件:
从django.contrib.sessions.models导入会话$ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $
$ b class UserRestrictMiddleware(object):
防止不止一个用户从两个不同的IP登录一次
def process_request self,request):
ip_address = request.META.get('REMOTE_ADDR','')
try:
last_login = request.user.last_login
除了
last_login = 0
如果unicode(last_login)== unicode(datetime.now())[:19]:
previous_visitors = Visitor.objects.filter = request.user).exclude(ip_address = ip_address)
在previous_visitors中的访问者:
Session.objects.filter(session_key = visitor.session_key).delete()
visitor.user =无
visitor.save()
3)确保它在VisitorTrackingMiddleware之后,你应该当有人登录时,发现以前的登录会自动碰撞:)
I want to only allow one authenticated session at a time for an individual login in my Django application. So if a user is logged into the webpage on a given IP address, and those same user credentials are used to login from a different IP address I want to do something (either logout the first user or deny access to the second user.)
Not sure if this is still needed but thought I would share my solution:
1) Install django-tracking (thankyou for that tip Van Gale Google Maps + GeoIP is amazing!)
2) Add this middleware:
from django.contrib.sessions.models import Session
from tracking.models import Visitor
from datetime import datetime
class UserRestrictMiddleware(object):
"""
Prevents more than one user logging in at once from two different IPs
"""
def process_request(self, request):
ip_address = request.META.get('REMOTE_ADDR','')
try:
last_login = request.user.last_login
except:
last_login = 0
if unicode(last_login)==unicode(datetime.now())[:19]:
previous_visitors = Visitor.objects.filter(user=request.user).exclude(ip_address=ip_address)
for visitor in previous_visitors:
Session.objects.filter(session_key=visitor.session_key).delete()
visitor.user = None
visitor.save()
3) Make sure it goes after the VisitorTrackingMiddleware and you should find previous logins are automatically bumped when someone new logs in :)
这篇关于如何从不同的位置检测到Django Web应用程序的多次登录?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!