今天我正在使用python和flask创建一个小型RESTfull服务。好像我似乎无法解决这个问题。
这是我的代码:
# Extensions
auth = HTTPBasicAuth()
def login_user(username,password):
# If the username can be decoded as a JWT & the password is empty, return true
if jwt.decode(username, SERVER_PAYLOARD_SECRET, algorithms=['HS256']) == '{"some":"payload"}' and password == "":
return username and password
else:
# Otherwise, make the classic username/password verification
# Get the password corresponding to the username.
connection = sqlite3.connect(database_name)
cursor = connection.cursor()
cursor.execute("SELECT Username AND Password FROM Users WHERE Username = ?", (username))
returned_data = cursor.fetchall()
# Do the verification
if returned_data[0] == username and pwd_context.verify(password,returned_data[1]):
return username and password
else:
abort(401)
@auth.get_password
def verify_password(username,password):
return login_user(username,password)
# Look if the token used is in memory
@app.route('/api/user/delete_user', methods=['GET','POST'])
@auth.login_required
def delete_user():
# Validate the login token, and then delete the user from the
# database and all the streams or information he has.
return "Hello World"
我不知道我能返回什么,以及我的login_user()函数是否正确。
感谢您的帮助,
干杯
编辑:当我运行代码时,出现此错误:
Traceback (most recent call last):
[...]
File "/home/n07070/FarDrive/Code/OpenPhotoStream/lib/python3.4/site-packages/flask_httpauth.py", line 57, in decorated
password = self.get_password_callback(auth.username)
TypeError: verify_password() missing 1 required positional argument: 'password'
答案 0 :(得分:0)
小错误。改变这个:
@auth.get_password
def verify_password(username,password):
return login_user(username,password)
# Look if the token used is in memory
到此:
@auth.verify_password
def verify_password(username,password):
return login_user(username,password)
# Look if the token used is in memory
Flask-HTTPAuth提供了几种不同的方法来验证客户端的凭据。 @auth.get_password非常简单,您的装饰函数使用用户名,您需要返回与该帐户对应的密码。 @auth.verify_password是一个更灵活的选项,它为您提供客户端提供的凭据,您可以实现自己的验证逻辑。听起来像这个最后一个选项就是你想要的。