我是Django的新手,并尝试使用带有Django 1.4的django.contrib.auth.views.login
为我的网页构建一个简单的登录系统。我有一个包含以下登录表单的基本模板,然后由我网站上的其他模板页面进行扩展:
<form method="post" action="/accounts/login/">
{% csrf_token %}
<p><label for="id_username">Username:</label> <input id="id_username" type="text" name="username" maxlength="30" /></p>
<p><label for="id_password">Password:</label> <input type="password" name="password" id="id_password" /></p>
<input type="submit" value="Log in" />
<input type="hidden" name="next" value="{{ request.get_full_path }}" />
</form>
但是当我尝试登录时,我收到以下消息:
“禁止(403) CSRF验证失败。请求中止。失败的原因: CSRF令牌丢失或不正确。“
来自urls.py的相关摘录:
url(r'^accounts/login/$', 'django.contrib.auth.views.login')
和settings.py:
TEMPLATE_CONTEXT_PROCESSORS = (
'django.core.context_processors.request',
)
.....
INSTALLED_APPS = (
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.sites',
'django.contrib.messages',
'django.contrib.staticfiles',
)
.....
MIDDLEWARE_CLASSES = (
'django.middleware.common.CommonMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
)
有什么建议吗?
答案 0 :(得分:7)
让我简要解释如何通过Django中的用户模型使用标准身份验证:
<强> 应用程序名称/ views.py: 强>
from django.http import HttpResponse
from django.contrib.auth import authenticate, login
from django.contrib.auth.decorators import login_required
from django.template import Context, loader, RequestContext
from django.shortcuts import render_to_response
from django.template import
@login_required
def stat_info(request):
return render_to_response('stat_info.html',
{'is_auth':request.user.is_authenticated()},
context_instance=RequestContext(request))
@login_required
def mainmenu(request):
return render_to_response('mainmenu.html',{},
context_instance=RequestContext(request))
<强> urls.py: 强>
from django.conf.urls import patterns, include, url
from django.contrib import admin
admin.autodiscover()
urlpatterns = patterns('',
url(r'^admin/', include(admin.site.urls)),
(r'^statinfo/$', 'appname.views.stat_info'),
(r'^accounts/login/$', 'django.contrib.auth.views.login'),
(r'^accounts/logout/$', 'django.contrib.auth.views.logout', {'next_page' : '/accounts/login'}),
(r'^mainmenu/$', 'appname.views.mainmenu')
)
<强> settings.py: 强>
...
LOGIN_REDIRECT_URL='/mainmenu/'
...
<强> 模板/注册/ login.html的: 强>
{% extends "base.html" %}
{% block content %}
{% if form.errors %}
<p>Your username and password didn't match. Please try again.</p>
{% endif %}
<form method="post" action="{% url django.contrib.auth.views.login %}">
{% csrf_token %}
<table>
<tr>
<td>{{ form.username.label_tag }}</td>
<td>{{ form.username }}</td>
</tr>
<tr>
<td>{{ form.password.label_tag }}</td>
<td>{{ form.password }}</td>
</tr>
</table>
<input type="submit" value="login" />
<input type="hidden" name="next" value="{{ next }}" />
</form>
{% endblock %}
<强> 模板/ base.html文件: 强>
<!DOCTYPE html>
<html lang="en">
<head>
<link rel="stylesheet" href="style.css" />
<title>{% block title %}templates/base.html{% endblock %}</title>
</head>
<body>
<div id="sidebar">
{% block sidebar %}
<ul>
<li><a href="/">Home</a></li>
{% if user.is_authenticated %}
<li><a href="/accounts/logout">Logout</a></li>
{% else %}
<li><a href="/accounts/login">Login</a></li>
{% endif %}
</ul>
{% endblock %}
</div>
<div id="content">
{% block content %}{% endblock %}
</div>
</body>
</html>
<强> 模板/ mainmenu.html: 强>
<!DOCTYPE html>
{% extends "base.html" %}
<html>
<head>
<title>{% block title %}templates/mainmenu.html{% endblock %}</title>
</head>
<body>
<div id="content">
{% block content %}
Mainmenu
<a href="/statinfo/">stat info</a>
{% endblock %}
</div>
</body>
</html>
<强>模板/ stat_info.html:强>
<!DOCTYPE html>
{% extends "base.html" %}
<html>
<head>
<title>{% block title %}templates/mainmenu.html{% endblock %}</title>
</head>
<body>
<div id="content">
{% block content %}
Mainmenu
<a href="/statinfo/">stat info</a>
{% endblock %}
</div>
</body>
</html>
答案 1 :(得分:0)
模型:
类UserProf(models.Model):
"""
Create ``RegistrationProfile for User``
"""
user = models.OneToOneField(User)
""" Other fields here """
address1 = models.CharField(max_length=100,blank=True)
address2 = models.CharField(max_length=100,blank=True)
city = models.CharField(max_length=40,blank=True)
country = models.CharField(max_length=40,blank=True)
age = models.IntegerField(blank=True)
的观点:
来自django.contrib.auth import authenticate,login
def user_authenticate(request):
"""
check username and password and displays its appr. user_profile page
"""
username = password = ''
if request.POST:
username = request.POST.get('username')
password = request.POST.get('Password')
user = authenticate(username=username, password=password)
if user is not None:
if user.is_active:
login(request,user)
return HttpResponseRedirect('/profile/')
else:
return HttpResponseRedirect('/qioness/connect/')
else:
return HttpResponseRedirect('/qioness/connect/')
网址:
URL(R '^简档/ $',show_detail),
模板:
<form action="/qioness/" method="post">
<label>
<strong class="email-label">Username</strong>
<input type="text" id="Email" name="username">
<span class="login_error"></span>
</label>
<label>
<strong class="passwd-label">Password</strong>
<input type="password" id="Passwd" name="Password">
<span class="login_error"> </span>
</label>
<input name="Add" type="submit" value="Log" class="Submit_btn" />
<label class="remember">
<input type="checkbox" value="yes" id="PersistentCookie" name="PersistentCookie">
<strong class="remember-label">
Remember Me
</strong>
</label>
</form>
</div>
工作4我:)