无法在Django中使用正确的用户名和密码进行身份验证? [英] Not able to authenticate with correct username and password in Django?
问题描述
我正在使用Django 1.5。我的用户模型是:
I am using Django 1.5. My user model is:
class User(AbstractBaseUser):
#id = models.IntegerField(primary_key=True)
#identifier = models.CharField(max_length=40, unique=True, db_index=True)
username = models.CharField(max_length=90, unique=True, db_index=True)
create_time = models.DateTimeField(null=True, blank=True)
update_time = models.DateTimeField(null=True, blank=True)
email = models.CharField(max_length=225)
#password = models.CharField(max_length=120)
external = models.IntegerField(null=True, blank=True)
deleted = models.IntegerField(null=True, blank=True)
purged = models.IntegerField(null=True, blank=True)
form_values_id = models.IntegerField(null=True, blank=True)
disk_usage = models.DecimalField(null=True, max_digits=16, decimal_places=0, blank=True)
#last_login = models.DateTimeField()
objects = UserManager()
USERNAME_FIELD = 'username'
class Meta:
db_table = u'galaxy_user'
我是无法使用正确的用户名和密码进行身份验证。
我的登录功能是:
I am not able to authenticate with correct username and password. My login function is:
def login_backend(request):
if request.method == 'POST':
username = request.POST['username']
password = request.POST['password']
user = authenticate(username=username, password=password)
if user is not None:
login(request, user)
return HttpResponseRedirect('/overview/')
else:
return HttpResponseRedirect('/login_backend/')
else:
return render_to_response('login_backend.html', context_instance=RequestContext(request))
我在做什么错?
推荐答案
首先更新您的用户模型,它没有密码。您的电子邮件字段不是charfield,我想它是EmailField,您的密码也不是charfield。请搜索正确的字段。密码必须为哈希...
First update your User model, it has no password. Your email field is not charfield I think it's EmailField and your password is not a charfield also. Please search for the correct field. Password must be hash...
backend.py
from django.conf import settings
from app_name.models import User
class AuthBackend:
def authenticate(self, username=None, password=None):
if '@' in username:
kwargs = {'email': username}
else:
kwargs = {'username': username}
try:
user = User.objects.get(**kwargs)
if user.check_password(password):
return user
except User.DoesNotExist:
return None
def get_user(self, user_id):
try:
return User.objects.get(pk=user_id)
except User.DoesNotExist:
return None
通过模型创建 check_password 函数。这种检查的方式是,在将输入的密码与保存在数据库中的密码进行比较之前,必须将其加密。
Create "check_password" function via model. The way this check is, the input password must be hash before comparing it to the password that is being save in the database.
更新 settings.py
AUTHENTICATION_BACKENDS = (
'app_name.backend.AuthBackend',
'django.contrib.auth.backends.ModelBackend',
)
这篇关于无法在Django中使用正确的用户名和密码进行身份验证?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!