flask-鐢ㄦ埛璁よ瘉绯荤粺

flask鏈夊叧璁よ瘉鐨勬墿灞?/h4> 鎵╁睍 璇存槑 flask-login 绠＄悊宸茬櫥褰曠敤鎴风殑鐢ㄦ埛浼氳瘽 werkzeug 璁＄畻瀵嗙爜鏁ｅ垪鍊煎苟杩涜鏍稿 itsdangerous 鐢熸垚骞舵牳瀵瑰姞瀵嗗畨鍏ㄤ护鐗?/td> flask-mail 鍙戦€佷笌璁よ瘉鐩稿叧鐨勯偖浠?/td> werkzeug璁＄畻瀵嗙爜鏁ｅ垪鍊?/h4>

鍦ㄦ暟鎹簱涓繚瀛樼敤鎴峰瘑鐮佹椂,澶勪簬瀹夊叏鑰冭檻,鎴戜滑鍌ㄥ瓨鐨勭敤鎴峰瘑鐮佸姞瀵嗗悗鐨勫瘑鐮佹暎鍒楀€?

werkzeug涓殑security妯″潡涓彁渚涚殑涓や釜鏂规硶鍙互寰堟柟渚跨殑瀹炵幇杩欎釜鍔熻兘.

generate_password_hash(password, method=pdkdf2:sha1, salt_length=8), 璇ユ柟娉曡緭鍏ヤ负鍘熷瀵嗙爜,杈撳嚭鏄瓧绗︿覆褰㈠紡鐨勫瘑鐮佹暎鍒楀€?鍙互鐢ㄥ湪鐢ㄦ埛娉ㄥ唽鐨勬椂鍊?鏁版嵁搴撲腑淇濆瓨鐢ㄦ埛瀵嗙爜鏁ｅ垪鍊?method, salt_length鐨勯粯璁ゅ€煎氨鑳芥弧瓒冲ぇ閮ㄥ垎闇€姹? check_password_hash(hash, password),杩欎釜鍑芥暟鐨勫弬鏁版槸鏁版嵁搴撲腑瀛樺偍鐨勫瘑鐮佹暎鍒楀€煎拰鐢ㄦ埛鎻愪緵鐨勫瘑鐮?涓よ€呰繘琛屾牳瀵?濡傛灉瀵嗙爜姝ｇ‘鍒欒繑鍥濼rue,鍚﹀垯,杩斿洖False. flask-login璁よ瘉鐢ㄦ埛 flask-ligin浣跨敤鏂规硶 瑕佹兂浣跨敤flask-login鎵╁睍,user妯″瀷涓繀椤昏瀹炵幇鍥涗釜鏂规硶: 鏂规硶 璇存槑 is_authenticated() 濡傛灉鐢ㄦ埛鐧诲綍,蹇呴』杩斿洖True, 鍚﹀垯杩斿洖False is_active() 濡傛灉鍏佽鐢ㄦ埛鐧诲綍,蹇呴』杩斿洖True,鍚﹀垯杩斿洖False,濡傛灉瑕佺鐢ㄨ处鎴?鍙互杩斿洖False is_anonymous() 瀵规櫘閫氱敤鎴峰繀椤昏繑鍥濬alse get_id() 蹇呴』杩斿洖鐢ㄦ埛涓€涓爣璇嗙,浣跨敤Unicode 缂栫爜鐨勫瓧绗︿覆

杩欏洓涓柟娉曞彲浠ュ湪User妯″瀷涓疄鐜?涔熷彲浠ョ户鎵縡lask-login涓殑UserMixin绫绘潵瀹炵幇,UserMixin绫讳腑鍖呭惈浜嗕互涓婂洓绉嶆柟娉曠殑榛樿瀹炵幇,鑳藉婊¤冻澶у鏁?br>闇€姹? 鍦║serMixin绫讳腑,杩欏洓绉嶆柟娉曢兘娣诲姞浜咢property瑁呴グ鍣?灏嗘柟娉曡浆鍖栨垚浜嗗睘鎬?渚嬪:user.is_authenticated鑰屼笉鐢╱ser.is_authenticated()

flask-login瑕佹眰绋嬪簭瀹炵幇涓€涓洖璋冨嚱鏁?浣跨敤鎸囧畾鐨勬爣璇嗙鍔犺浇鐢ㄦ埛.鍑芥暟鐨勫疄鐜板涓?

from . import login_manager

@login_manager.user_loader
def load_user(user_id):
    return User.query.ger(int(user_id))

鍔犺浇鐢ㄦ埛鐨勫洖璋冨嚱鏁版帴鍙椾互Unicode瀛楃涓插舰寮忚〃绀虹殑鐢ㄦ埛鏍囪瘑绗?濡傛灉鑳芥壘鍒扮敤鎴?鍒欒繑鍥炵敤鎴峰璞?鍚﹀垯杩斿洖None.

flask-login 鍦ㄥ伐鍘傚嚱鏁颁腑鐨勫垵濮嬪寲鏂规硶:

from flask import Flask
from flask.ext.login import LoginManager

# 鍒涘缓LoginManager瀹炰緥瀵硅薄
login_manager = LoginManager()
# 璁剧疆鐢ㄦ埛浼氳瘽淇濇姢绛夌骇.strong涓鸿褰曞鎴风ip鍜屾祻瑙堝櫒鐢ㄦ埛浠ｇ悊淇℃伅,濡傚彂鐜板紓甯稿氨閫€鍑虹櫥褰?login_manager.session_protection = 'strong'
# 璁剧疆鐧诲綍椤甸潰鐨勭鐐?'钃濇湰鍚?瑙嗗浘鍑芥暟鍚?
login_manager.login_view = 'auth.login'

def create_app('config_name'):
    app = Flask()
    app.config.from_object('config_name')

    login_manager.init_app(app)

    # 娉ㄥ唽钃濆浘
    ...

    return app

flask-login妯″潡鐩稿叧鏂规硶 login_user(user, remenber=False, force=False, fresh=True)

褰撶敤鎴风櫥褰曚互鍚庯紝濡傛灉闇€瑕佽褰曠敤鎴风殑鐘舵€佸垯鍒欏彲浠ヨ皟鐢?login_user鍑芥暟璁板綍褰撳墠鐧诲綍鐨勭敤鎴枫€?/p>

login_user涓昏鐨勪綔鐢ㄥ氨鏄皢user鐨刬d鍔犲叆鍒皊ession涓€俽emember鍙傛暟鏄叧闂祻瑙堝櫒鏄惁闇€瑕侀噸鏂扮櫥褰?

褰撶敤鎴疯闂湭鎺堟潈鐨刄RL鏃朵細鏄剧ず鐧诲綍琛ㄥ崟,Flask-Login浼氭妸鍘熷湴鍧€淇濆瓨鍦ㄦ煡璇㈠瓧绗︿覆鐨刵ext鍙傛暟涓?杩欎釜鍙傛暟鍙粠request.args瀛楀吀涓鍙?

logout_user()

logout_user()鍑芥暟,鍒犻櫎骞堕噸璁剧敤鎴蜂細璇?

褰撲腑鏌愪簺鎿嶄綔闇€瑕佺敤鎴风櫥褰曠殑鏃跺€欙紝灏遍渶瑕佺敤鍒拌楗板櫒login_required銆?/p>

@main.route('/post')
@login_required
def post():
    pass

current_user璁板綍浜嗗綋鍓嶇櫥褰曪紙璁よ瘉锛夌敤鎴风殑淇℃伅锛屾彁渚涗簡涓€涓闂拰琛ㄧず褰撳墠鐧诲綍鐨勫璞°€?/p>

current_user瀵圭敤鎴峰疄渚嬭繘琛屼簡灏佽,濡傛灉鎯宠幏寰楃湡姝ｇ殑鐢ㄦ埛瀵硅薄,鍙互閫氳繃current_user._get_current_object()鑾峰彇.

浣跨敤itsdangerous鐢熸垚纭浠ょ墝

itsdangerous鎻愪緵浜嗗绉嶄护鐗岀敓鎴愮殑鏂规硶,鍏朵腑TimedJSONWebSignatureSerializer绫诲彲浠ョ敓鎴愪竴涓叿鏈夎繃鏈熸椂闂寸殑JSON WEB绛惧悕.杩欎釜绫荤殑鏋勯€犲嚱鏁扮殑鍙傛暟鏄竴涓瘑閽?

璇ョ被鎻愪緵浜哾umps()鍜宭oads()鏂规硶:

dumps()鏂规硶涓烘寚瀹氱殑鏁版嵁鐢熸垚涓€涓姞瀵嗙鍚?鐒跺悗瀵规暟鎹拰绛惧悕杩涜搴忓垪鍖?鐢熸垚浠ょ墝瀛楃涓?璇ユ柟娉曞寘鍚袱涓弬鏁?绗竴涓槸瑕佸姞瀵嗙殑鏁版嵁,绗簩涓槸杩囨湡鏃堕棿expires_in.鍗曚綅鏄.

loads()鏂规硶,鍏跺敮涓€鐨勫弬鏁版槸浠ょ墝瀛楃涓?璧蜂綔鐢ㄦ槸,灏嗗姞瀵嗙殑浠ょ墝瀛楃涓茶浆鍖栦负鍘熷瀛楃涓?鍏朵腑鍙互妫€娴嬬鍚嶅強杩囨湡鏃堕棿.濡傛灉浠ょ墝涓嶆纭垨鑰呰繃鏈?鍒欐姏鍑哄紓甯?

纭鐢ㄦ埛璐︽埛鐨勭ず渚嬪涓?

from itsdangerous import TimedJSONWebSignatureSerializer as Serializer
from flask import current_app


Class User(db.Model):
    ...

    def generate_confirm_token(self, expiration=3600):
        s = Serializer('secret key', expiration)
        return s.dumps({'confirm': self.id)

    def confirm(self, token)
        s = Serializer('secret key')
        try:
            data = s.loads(token)
        except:
            return False
        if data.get('confirm') != self.id:
            return False
        self.confirmed = True
        # 鎻愪氦鏁版嵁搴?        db.session.add(self)
        db.session测试数据mit()
        return True

flask-mail鍙戦€侀偖浠?/h4>

鍦ㄧ敤鎴风‘璁ょ郴缁熶腑,鍙互鍒╃敤flask-mail缁欐敞鍐岀殑鐢ㄦ埛鍙戦€佺‘璁ら偖浠?鍙湁鍦ㄧ敤鎴风‘璁ゅ悗,鎵嶇畻鏄湡姝ｇ殑娉ㄥ唽瀹屾垚.

鍒濆鍖杅lask-mail(鍦ㄥ嚱鏁板伐鍘備腑鍒濆鍖?

from flask import Flask
from flask.ext.mail import Mail

mail = Mail()

def create_app('config_name'):
    app = Flask(__name__)
    ...
    mail.init_app(app)

閰嶇疆

flask-mail 杩炴帴鍒扮畝鍗曠殑閭欢浼犺緭鍗忚(Simple Mail Transfer Protocol, SMTP)鏈嶅姟鍣?鎶婇偖浠朵氦涓繖涓湇鍔″櫒鍙戦€?

鍦ㄥ彂閫侀偖浠朵箣鍓?蹇呴』閰嶇疆SMTP鏈嶅姟鍣?閰嶇疆鍙傛暟濡備笅(浠?63涓轰緥):

MAIL_SERVER = SMTP.163测试数据  # 鏈嶅姟鍣ㄤ富鏈?涓€鑸琒MTP.xxx测试数据褰㈠紡,姣斿SMTP.qq测试数据
MAIL_PORT = 465  # 163鏈嶅姟鍣ㄧ鍙?SSL鍚敤绔彛涓€鑸槸465,涓嶅惎鐢ㄧ鍙ｆ槸25
# MAIL_USE_TLS = 25 # 鍚敤浼犺緭灞傚畨鍏ㄥ崗璁?Transport Secrity)
MAIL_USE_SSL = 465  # 鍚敤瀹夊叏濂楅樁灞傚崗璁?Security Socket)
MAIL_USERNAME = xxx.163测试数据  # 閭璐︽埛鐢ㄦ埛鍚?MAIL_PASSWORD = xxxxxx  # 163瀹㈡埛绔巿鏉冪爜, 涓嶆槸鐧诲綍瀵嗙爜, 鎺堟潈鐮佸彲浠ュ湪閭璁剧疆閲屾煡鎵?/pre> 
 鍙戦€侀偖浠?/h5> 
from flask.ext.mail import Message
from . import mail

# subject鏄偖浠剁殑涓婚, sender鏄彂閫佹柟閭,recipients鏄帴鏀舵柟閭鍒楄〃, msg.body鏄偖浠舵鏂?msg.body鏄偖浠剁殑html姝ｆ枃
msg = Message(subject, sender=xxx, recipients=[xxx])
msg.body = 'test body'
msg.html = '<b>html</b> body'

# 鍦╢lask涓?flask-mail涓殑mail()鍑芥暟浣跨敤鐨刢urrent_app,鍦╯hell鐜涓繍琛?蹇呴』婵€娲荤殑绋嬪簭涓婁笅鏂囦腑鎵ц
with app.app_context():
    mail.send(msg)
 
 寮傛鍙戦€侀偖浠?/h5> 
寮傛鍙戦€佺數瀛愰偖浠跺彲浠ュ皢鍙戦€佺數瀛愰偖浠剁殑绋嬪簭绉诲埌鍚庡彴绾跨▼涓紱浠ｇ爜濡備笅
 
from flask.ext.mail import Message
from . import mail
from threading import Thread

def send_async_email(app, msg)
    with app.app_context():
        mail.send(msg)

def send_email(subject, sender, recipients):
    msg = Message(subject, sender, recipients)
    msg.body = 'test body'
    msg.html = '<b>html</b> body'
    thr = Thread(target=send_async_email, args=[app, msg])
    thr.start()
    return thr
 
寰堝flask鎵╁睍閮藉亣璁惧凡缁忓瓨鍦ㄦ縺娲荤殑绋嬪簭涓婁笅鏂囧拰璇锋眰涓婁笅鏂?flask-mail涓殑send()鍑芥暟浣跨敤current_app, 鍥犳蹇呴』鏈夋縺娲荤殑绋嬪簭涓婁笅鏂?鍦ㄤ笉鍚岀嚎绋嬩腑鎵цmail.send()鍑芥暟鏃?绋嬪簭涓婁笅鏂囪鐢╝pp.app_context()浜哄伐鍒涘缓.
 
 琛ュ厖  
绋嬪簭鍦ㄥ彂閫佸ぇ閲忕殑鐢靛瓙閭欢鏃?浣跨敤涓撻棬鍙戦€佺數瀛愰偖浠朵綔涓氳姣旀瘡灏佺數瀛愰偖浠堕兘鏂板缓涓€涓嚎绋嬭鏇村悎閫?渚嬪鍙互鍚ф墽琛宻end_async_email()鍑芥暟鐨勬搷浣滃彂缁機elery(http://HdhCmsTestceleryproject.org/)浠诲姟闃熷垪.鍏充簬鍏蜂綋鎿嶄綔,鍚庣画缁х画瀛︿範涓?/a>.
 
 鍘熸枃:澶т笓鏍?/a>  flask-鐢ㄦ埛璁よ瘉绯荤粺


      
查看更多关于flask-鐢ㄦ埛璁よ瘉绯荤粺的详细内容...
        

          
声明：本文来自网络，不代表【好得很程序员自学网】立场，转载请注明出处：http://www.haodehen.cn/did171087