您的位置: 首页  >  技术问答  >  无法在Django中使用正确的用户名和密码进行身份验证?

无法在Django中使用正确的用户名和密码进行身份验证?

分类: 技术问答 2022-03-26 21:20:42

无法在Django中使用正确的用户名和密码进行身份验证?

问题描述:

我正在使用Django 1.5。我的用户模型是:

I am using Django 1.5. My user model is:

class User(AbstractBaseUser):
    #id = models.IntegerField(primary_key=True)
    #identifier = models.CharField(max_length=40, unique=True, db_index=True)
    username = models.CharField(max_length=90, unique=True, db_index=True)
    create_time = models.DateTimeField(null=True, blank=True)
    update_time = models.DateTimeField(null=True, blank=True)
    email = models.CharField(max_length=225)
    #password = models.CharField(max_length=120)
    external = models.IntegerField(null=True, blank=True)
    deleted = models.IntegerField(null=True, blank=True)
    purged = models.IntegerField(null=True, blank=True)
    form_values_id = models.IntegerField(null=True, blank=True)
    disk_usage = models.DecimalField(null=True, max_digits=16, decimal_places=0, blank=True)
    #last_login = models.DateTimeField()

    objects = UserManager()
    USERNAME_FIELD = 'username'
    class Meta:
        db_table = u'galaxy_user'

我是无法使用正确的用户名和密码进行身份验证。
我的登录功能是:

I am not able to authenticate with correct username and password. My login function is:

def login_backend(request):
    if request.method == 'POST':
        username = request.POST['username']
        password = request.POST['password']
        user = authenticate(username=username, password=password)
        if user is not None:
            login(request, user)
            return HttpResponseRedirect('/overview/')
        else:
            return HttpResponseRedirect('/login_backend/')
    else:
        return render_to_response('login_backend.html', context_instance=RequestContext(request))

我在做什么错?

首先更新您的用户模型,它没有密码。您的电子邮件字段不是charfield,我想它是EmailField,您的密码也不是charfield。请搜索正确的字段。密码必须为哈希...

First update your User model, it has no password. Your email field is not charfield I think it's EmailField and your password is not a charfield also. Please search for the correct field. Password must be hash...

backend.py 

from django.conf import settings
from app_name.models import User

class AuthBackend:
    def authenticate(self, username=None, password=None):
        if '@' in username:
            kwargs = {'email': username}
        else:
            kwargs = {'username': username}
        try:
            user = User.objects.get(**kwargs)
            if user.check_password(password):
                return user
        except User.DoesNotExist:
            return None

    def get_user(self, user_id):
        try:
            return User.objects.get(pk=user_id)
        except User.DoesNotExist:
            return None

通过模型创建 check_password 函数。这种检查的方式是,在将输入的密码与保存在数据库中的密码进行比较之前,必须将其加密。

Create "check_password" function via model. The way this check is, the input password must be hash before comparing it to the password that is being save in the database.

更新 settings.py 

AUTHENTICATION_BACKENDS = (
    'app_name.backend.AuthBackend',
    'django.contrib.auth.backends.ModelBackend',
)

相关推荐