heuzef
/
pinry
kopie van https://github.com/pinry/pinry.git
1
0
Vork 0
Code Kwesties 0 Publicaties 44 Wiki Activiteit
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
726 Commits
5 Branches
341 MiB
 
 
 
 
 
 
Tree: 48ea7e47f3
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van '48ea7e47f3'
${ noResults }
pinry/users/views.py

90 regels
2.6 KiB
Ruw Blame Geschiedenis 

  1. import json

  2. 

  3. from django.conf import settings

  4. from django.contrib import messages

  5. from django.contrib.auth import authenticate, login, logout

  6. from django.contrib.auth.decorators import login_required

  7. from django.core.urlresolvers import reverse

  8. from django.http import HttpResponseRedirect, HttpResponseBadRequest, HttpResponse

  9. from django.utils.functional import lazy

  10. from rest_framework import mixins, routers

  11. from rest_framework.permissions import BasePermission

  12. from rest_framework.renderers import JSONRenderer

  13. from rest_framework.viewsets import GenericViewSet

  14. 

  15. from core.serializers import UserSerializer

  16. from users.models import User

  17. 

  18. 

  19. def reverse_lazy(name=None, *args):

  20.     return lazy(reverse, str)(name, args=args)

  21. 

  22. 

  23. class UserViewSet(

  24.     mixins.RetrieveModelMixin,

  25.     mixins.ListModelMixin,

  26.     mixins.CreateModelMixin,

  27.     GenericViewSet,

  28. ):

  29.     class Permission(BasePermission):

  30.         def has_permission(self, request, view):

  31.             if not request.method == "POST":

  32.                 return True

  33.             return settings.ALLOW_NEW_REGISTRATIONS

  34. 

  35.         def has_object_permission(self, request, view, obj):

  36.             return request.user == obj

  37. 

  38.     permission_classes = [Permission, ]

  39.     serializer_class = UserSerializer

  40.     pagination_class = None

  41. 

  42.     def get_queryset(self):

  43.         if self.request.user.is_anonymous:

  44.             return User.objects.none()

  45.         return User.objects.filter(id=self.request.user.id)

  46. 

  47. 

  48. def login_user(request):

  49.     try:

  50.         data = json.loads(request.body)

  51.     except json.JSONDecodeError:

  52.         return HttpResponseBadRequest()

  53.     if 'username' not in data:

  54.         return HttpResponseBadRequest(

  55.             json.dumps({"username": "this field is required"})

  56.         )

  57.     if 'password' not in data:

  58.         return HttpResponseBadRequest(

  59.             json.dumps({"password": "this field is required"})

  60.         )

  61.     user = authenticate(

  62.         request,

  63.         username=data['username'],

  64.         password=data['password']

  65.     )

  66.     if not user:

  67.         return HttpResponseBadRequest(

  68.             json.dumps({"password": "username and password doesn't match"})

  69.         )

  70.     login(request, user)

  71.     data = UserSerializer(

  72.         user,

  73.         context={'request': request},

  74.     ).data

  75.     return HttpResponse(

  76.         JSONRenderer().render(data),

  77.         content_type="application/json"

  78.     )

  79. 

  80. 

  81. @login_required

  82. def logout_user(request):

  83.     logout(request)

  84.     messages.success(request, 'You have successfully logged out.')

  85.     return HttpResponseRedirect('/')

  86. 

  87. 

  88. drf_router = routers.DefaultRouter()

  89. drf_router.register(r'users', UserViewSet, base_name="user")