无法在Django后端中哈希密码

时间:2019-01-25 01:46:16

标签: python django hash passwords

我创建了一个自定义用户模型,因为我需要用户使用电子邮件而不是用户名登录。如果用户在前端注册,则密码会被很好地散列,但是当我尝试从Django的后端创建密码时,密码将另存为纯文本。

admin.py 

def save(self, commit=True):
    # Save the provided password in hashed format
    user = super(RegisterForm, self).save(commit=False)
    user.set_password(self.cleaned_data["password"])
    if commit:
        user.save()
    return user

forms.py 

class RegisterForm(forms.ModelForm):
    email = forms.EmailField()
    password = forms.CharField(widget=forms.PasswordInput)
    password2 = forms.CharField(label='Confirm Password', widget=forms.PasswordInput)

    class Meta:
        model = User
        fields = ('email',)

    def clean_email(self):
        email = self.cleaned_data.get('email')
        qs = User.objects.filter(email=email)
        if qs.exists():
            raise forms.ValidationError("email is taken")
        return email

    def clean_password2(self):
        # Check that the two password entries match
        password = self.cleaned_data.get("password")
        password2 = self.cleaned_data.get("password2")
        if password and password2 and password != password2:
            raise forms.ValidationError("Passwords don't match")
        return password2

    def save(self, commit=True):
        user = super(RegisterForm, self).save(commit=False)
        user.set_password(self.cleaned_data['password'])
        # user.is_applicant = True
        user.is_active = True  
        if commit:
            user.save()
        return user

请寻求帮助。

2 个答案:

答案 0 :(得分:0)

也许您应该使用官方功能参见create_user创建用户。 https://docs.djangoproject.com/en/2.2/ref/contrib/auth/#django.contrib.auth.models.UserManager.create_user

答案 1 :(得分:0)

在admin.py的用户创建表单中为此编辑def save

def save(self, commit=True):
    user = super().save(commit=False)
    user.set_password(self.cleaned_data['password'])

    if commit:
        user.save()
    return user
相关问题
最新问题