Django JSON Web Token
结构
image-20210601134641970.png
工作原理
image-20210601173502934.png
Django rest_framework_jwt 配置
pip install djangorestframework-jwt
-
settings.py配置
REST_FRAMEWORK = { 'DEFAULT_PERMISSION_CLASSES': ( # 设置访问权限为必须是用户 'rest_framework.permissions.IsAuthenticated', ), 'DEFAULT_AUTHENTICATION_CLASSES': ( 'rest_framework_jwt.authentication.JSONWebTokenAuthentication', # 'rest_framework.authentication.SessionAuthentication', # 'rest_framework.authentication.BasicAuthentication', ), } JWT_AUTH = { 'JWT_EXPIRATION_DELTA': datetime.timedelta(seconds=300), 'JWT_REFRESH_EXPIRATION_DELTA': datetime.timedelta(days=7), 'JWT_AUTH_HEADER_PREFIX': 'JWT', } -
usrls.py配置
from rest_framework_jwt.views import obtain_jwt_token # .... urlpatterns = [ url(r'^api-token-auth/', obtain_jwt_token), # ... ]
配置JWT secret_key动态获取
-
settings.py配置
AUTH_PROFILE_MODULE = 'data_flow.UserProfile' JWT_AUTH = { # ... 'JWT_GET_USER_SECRET_KEY': 'data_flow.utils.jwt_get_secret_key', # get_secret_key函数位置 } -
models.py配置
from django.contrib.auth.models import User from django.db.models.signals import post_save class UserProfile(models.Model): user = models.OneToOneField(User, on_delete=models.CASCADE) jwt_secret = models.UUIDField(default=uuid.uuid4) def create_user_profile(sender, instance, created, **kwargs): if created: profile, created = UserProfile.objects.get_or_create(user=instance) post_save.connect(create_user_profile, sender=User)python manage.py makemigrations python manage.py migrate -
admin.py配置
from django.contrib.auth.admin import UserAdmin from django.contrib.auth.models import User class ProfileInline(admin.StackedInline): model = UserProfile # fk_name = 'user' max_num = 1 can_delete = False class CustomUserAdmin(UserAdmin): inlines = [ProfileInline, ] admin.site.unregister(User) admin.site.register(User, CustomUserAdmin) -
编写get_secret_key函数
def jwt_get_secret_key(user_model): """ 针对不同user使用不同key :param user_model: :return: """ return user_model.userprofile.jwt_secret
