使用Django / Redis / Node.js实时推/拉

时间:2012-05-04 09:17:15

标签: django node.js redis

我正在尝试在Django应用上添加实时更新,该应用具有与此处所述类似的架构:http://lincolnloop.com/blog/2012/apr/23/ginger-tech-stack/。基本上,更新通过Redis从Django发送到Node.js,然后通过Socket.io推送到连接的客户端。现在,我可以向连接的每个客户广播,但在实际情况下,我需要通过动作向有关客户发送数据(例如:用户发布消息,只有他的联系人/订阅者收到此消息)。所以我需要在Node.js端进行某种身份验证,以了解谁是谁。如何实现这一目标?

1 个答案:

答案 0 :(得分:1)

到目前为止,我的解决方案是在socket.io/node.js中获取已连接用户的身份(如果您有更好的解决方案,请随时发布):

在Django方面:

  • 修补Django使用json而不是pickle对象来存储会话数据:

        diff --git a/django/contrib/sessions/backends/base.py b/django/contrib/sessions/backends/base.py
index 5a637e2..cb4db54 100644
--- a/django/contrib/sessions/backends/base.py
+++ b/django/contrib/sessions/backends/base.py
@@ -2,9 +2,9 @@
 import time
 from datetime import datetime, timedelta
 try:
-    import cPickle as pickle
+    import json
 except ImportError:
-    import pickle
+    import simplejson as json

 from django.conf import settings
 from django.core.exceptions import SuspiciousOperation
@@ -75,21 +75,21 @@ def _hash(self, value):
         return salted_hmac(key_salt, value).hexdigest()

     def encode(self, session_dict):
-        "Returns the given session dictionary pickled and encoded as a string."
-        pickled = pickle.dumps(session_dict, pickle.HIGHEST_PROTOCOL)
-        hash = self._hash(pickled)
-        return base64.encodestring(hash + ":" + pickled)
+        "Returns the given session dictionary as json and encoded as a string."
+        data = json.dumps(session_dict)
+        hash = self._hash(data)
+        return base64.encodestring(hash + ":" + data)

     def decode(self, session_data):
         encoded_data = base64.decodestring(session_data)
         try:
             # could produce ValueError if there is no ':'
-            hash, pickled = encoded_data.split(':', 1)
-            expected_hash = self._hash(pickled)
+            hash, data = encoded_data.split(':', 1)
+            expected_hash = self._hash(data)
             if not constant_time_compare(hash, expected_hash):
                 raise SuspiciousOperation("Session data corrupted")
             else:
-                return pickle.loads(pickled)
+                return json.loads(data)
         except Exception:
             # ValueError, SuspiciousOperation, unpickling exceptions. If any of
             # these happen, just return an empty dictionary (an empty session).

在Node.js端:

  • 从“sessionid”cookie中读取会话密钥:

    socket.on('connection', function(client) {
    ...
    var cookie_string = client.handshake.headers.cookie;
    var parsed_cookies = connect.utils.parseCookie(cookie_string);
    var sessionid = parsed_cookies['sessionid'];
    ...
});

  • 检索&解析来自与sessionid对应的数据库的会话数据,以获取用户ID。

相关问题
最新问题