一、功能描述:
用戶提交手機號,獲取驗證碼,輸入密碼後,註冊並登錄。
二、發送短信驗證碼
1、首先要校驗手機號是否合法,是否已經註冊,還要限制發送驗證碼不能過於頻繁。
# 發送短信序列化
class SmsSerializer(serializers.Serializer):
mobile = serializers.CharField(max_length=11)
def validate_mobile(self, mobile): # validate_字段 驗證
"""
驗證手機號碼
:param data:
:return:
"""
# 手機是否註冊
if User.objects.filter(mobile=mobile).count():
raise serializers.ValidationError("用戶已經存在")
# 驗證手機號碼是否合法
if not re.match(REGEX_MOBILE, mobile):
raise serializers.ValidationError("手機號碼非法")
# 驗證碼發送頻率,60秒發一次
one_mintes_ago = datetime.now() - timedelta(hours=0, minutes=1, seconds=0)
if VerifyCode.objects.filter(add_time__gt=one_mintes_ago, mobile=mobile).count():
raise serializers.ValidationError("距離上一次發送未超過60s")
return mobile
定義一個工具類,向驗證碼服務商發送請求:
import json
import requests
class YunPian(object):
def __init__(self, api_key):
self.api_key = api_key
self.single_send_url = "https://sms.yunpian.com/v2/sms/single_send.json"
def send_sms(self, code, mobile):
"""
:param code: 驗證碼
:param mobile: 手機號
:return:
"""
params = {
"apikey": self.api_key,
"mobile": mobile,
"text": "您的驗證碼是{code}.".format(code=code)
}
response = requests.post(self.single_send_url, data=params)
re_dict = json.loads(response)
return re_dict
視圖類,發送驗證碼的功能:
class SmsCodeViewset(CreateModelMixin, viewsets.GenericViewSet):
# 發送短信驗證碼
serializer_class = SmsSerializer
# 要發送驗證碼,生成四位驗證碼
def get_code(self):
seeds = '1234567890' # 隨機種子
random_str = []
for i in range(4):
random_str.append(choice(seeds))
return "".join(random_str)
# 重寫create方法,向短信服務網站發起請求
def create(self, request, *args, **kwargs):
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True) # 出現錯誤,直接拋出異常,不會向下執行
mobile = serializer.validated_data['mobile'] # validated_data 獲取數據
# 發短信
yun_pian = YunPian(APIKEY)
code = self.get_code()
sms_status = yun_pian.send_sms(code=code, mobile=mobile) # sms_status得到返回的狀態
if sms_status["code"] != 0:
return Response({
"mobile": sms_status["msg"]
}, status=status.HTTP_400_BAD_REQUEST)
else:
# 保存驗證碼
code_record = VerifyCode(code=code, mobile=mobile)
code_record.save()
return Response({
"mobile": sms_status["msg"]
}, status=status.HTTP_201_CREATED) # 成功
三、註冊
1、序列化類
class UserRegSerializer(serializers.ModelSerializer):
code = serializers.CharField(required=True, write_only=True, max_length=4, min_length=4, label='驗證碼',
error_messages={
'blank': '請輸入驗證碼',
'required': '請輸入驗證碼',
'max_length': '驗證碼格式錯誤',
'min_length': '驗證碼格式錯誤'
}, help_text='驗證碼')
username = serializers.CharField(label='用戶名', help_text='用戶名', required=True, allow_blank=False,
validators=[UniqueValidator(queryset=User.objects.all(), message='用戶已存在')])
password = serializers.CharField(
style={'input_type': 'password'}, help_text='密碼', label='密碼', write_only=True,
) # write_only 數據不返回來
def validate_code(self, code):
"""
對驗證碼就行檢驗
:param code:
:return:
"""
verify_records = VerifyCode.objects.filter(mobile=self.initial_data['username']).order_by('-add_time')
# initial_data 用戶傳過來的值都在這裏面
if verify_records:
# 如果用戶多次發送,取出最新驗證碼
last_record = verify_records[0]
five_mintes_ago = datetime.now() - timedelta(hours=0, minutes=5, seconds=0)
if five_mintes_ago > last_record.add_time:
raise serializers.ValidationError('驗證碼過期')
if last_record.code != code:
raise serializers.ValidationError('驗證碼錯誤')
else:
raise serializers.ValidationError('驗證碼錯誤')
def validate(self, attrs): #全局校驗
attrs['mobile'] = attrs['username']
del attrs['code'] # 不會保存到數據庫中,多餘字段,到這已經通過code校驗,可以刪除
return attrs
class Meta:
model = User
fields = ('username', 'code', 'mobile', 'password')
2、視圖類
class UserViewset(CreateModelMixin, viewsets.GenericViewSet):
"""
用戶註冊
"""
serializer_class = UserRegSerializer
queryset = User.objects.all()
def create(self, request, *args, **kwargs):
#重寫create方法
serializer = self.get_serializer(data=request.data)
serializer.is_valid(raise_exception=True)
user = self.perform_create(serializer) # 保存
re_dict = serializer.data
payload = jwt_payload_handler(user)
re_dict["token"] = jwt_encode_handler(payload) # 獲取token
re_dict["name"] = user.name if user.name else user.username
#返回瀏覽器保存,不保存在服務器
headers = self.get_success_headers(serializer.data)
return Response(re_dict, status=status.HTTP_201_CREATED, headers=headers)
def get_object(self):
return self.request.user
def perform_create(self, serializer):
return serializer.save()
3、Django信號
在保存用戶信息時,密碼會保存成明文,所以引入了Django信號量機制。
from django.dispatch import receiver
from django.contrib.auth import get_user_model
User = get_user_model()
@receiver(post_save, sender=User) # 用戶提交的數據即將保存時,對密碼加密
def create_user(sender, instance=None, created=False, **kwargs):
if created:
password = instance.password
instance.set_password(password)
instance.save()