视图三部曲
下面我来来看restframework是如何将冗余的代码一步步的进行封装.
这里主要用到的是多继承
第一步mixin类编写视图
AuthorModelSerializer:
class AuthorModelSerializer(serializers.ModelSerializer):
class Meta:
model=models.Author
fields='__all__'
from rest_framework import mixins,generics class Authors(mixins.ListModelMixin,mixins.CreateModelMixin,generics.GenericAPIView): queryset = models.Author.objects.all() serializer_class = AuthorModelSerializer def get(self,request,*args,**kwargs): return self.list(request,*args,**kwargs) def post(self,request,*args,**kwargs): return self.create(request,*args,**kwargs) class AuthorsDetailView(mixins.RetrieveModelMixin,mixins.UpdateModelMixin,mixins.DestroyModelMixin,generics.GenericAPIView): queryset = models.Author.objects.all() serializer_class = AuthorModelSerializer def get(self,request,*args,**kwargs): return self.retrieve(request,*args,**kwargs) def put(self,request,*args,**kwargs): return self.update(request,*args,**kwargs) def delete(self,request,*args,**kwargs): return self.delete(request,*args,**kwargs)
第二部使用通用的基于类的视图
from rest_framework import generics class Authors(generics.ListCreateAPIView): queryset = models.Author.objects.all() serializer_class = AuthorModelSerializer class AuthorsDetailView(generics.RetrieveUpdateDestroyAPIView): queryset = models.Author.objects.all() serializer_class = AuthorModelSerialize # class ListCreateAPIView(mixins.ListModelMixin, # mixins.CreateModelMixin, # GenericAPIView): # class RetrieveUpdateDestroyAPIView(mixins.RetrieveModelMixin, # mixins.UpdateModelMixin, # mixins.DestroyModelMixin, # GenericAPIView):
通过使用mixin类,我们使用更少的代码重写了这些视图,但我们还可以再进一步。REST框架提供了一组已经混合好(mixed-in)的通用视图,我们可以使用它来简化我们的views.py模块。
到这里是第二部,但是我们还是需要实例化两个类来对应两个url,为什么要实例两个类,因为每个类都有get方法,
如果不写两个类,怎么知道走哪个get方法?
第三部viewsets.ModelViewSet
url部分
path('authors/', views.AuthorModelView.as_view({'get':'list','post':'create'}),name='authors'), re_path(r'^authors/(?P<pk>d+)/$', views.AuthorModelView.as_view({'get':'retrieve', 'put':'update', 'delete':'destroy'}),name='authors_detail'),
##############流程######## from rest_framework import viewsets class AuthorModelView(viewsets.ModelViewSet): ModelViewSet--->GenericViewSet--->ViewSetMixin----在这个类下执行了as_view for method, action in actions.items(): #as_view后面的参数倍循环后得到了请求key,相对应的方法values handler = getattr(self, action) # handler -->getattr(self,list) self--->自己写的类AuthorModelView setattr(self, method, handler) #setattr(self,get,self.list) self.get---->执行self.list
view:
from rest_framework import viewsets class AuthorModelView(viewsets.ModelViewSet): queryset = models.Author.objects.all() serializer_class = AuthorModelSerializer
认证组件
局部视图认证:
在app01.authented.py:
from rest_framework.authentication import BaseAuthentication from app01 import models from rest_framework.exceptions import AuthenticationFailed class AuthentiCate(BaseAuthentication): def authenticate(self, request): token=request.GET.get('token') token_obj=models.Token.objects.filter(token=token).first() if not token_obj: raise AuthenticationFailed('认证失败') return token_obj.user.username,token_obj
在views.py:
def get_random_str(user): import hashlib,time ctime=str(time.time()) md5=hashlib.md5(bytes(user,encoding="utf8")) md5.update(bytes(ctime,encoding="utf8")) return md5.hexdigest() from app01.authented import AuthentiCate from rest_framework import viewsets class AuthorModelView(viewsets.ModelViewSet): ##*******************### authentication_classes = [AuthentiCate] ##*******************### queryset = models.Author.objects.all() serializer_class = AuthorModelSerializer class LoginView(APIView): def post(self,request): ret={'status_code':1000,'msg':None} try: username=request.data.get('username') pwd=request.data.get('pwd') user=models.User.objects.filter(username=username,pwd=pwd).first() if user: radom_str=get_random_str(user.username) models.Token.objects.update_or_create(user=user,defaults={'token':radom_str}) ret['token']=radom_str else: ret['status_code']=1001 ret['msg']='用户名密码错误' except Exception as e: res["code"] = 1002 res["msg"] = e return Response(data=ret)
全局视图认证组件:
在settings的配置:
REST_FRAMEWORK={ "DEFAULT_AUTHENTICATION_CLASSES":["app01.authented.AuthentiCate",] }
权限组件
局部权限组件:
在app01.service.permissions.py中:
from rest_framework.permissions import BasePermission class SVIPPermission(BasePermission): message="SVIP才能访问!" def has_permission(self, request, view): if request.user.user_type==3: return True return False
views:
from app01.service.permissions import * class BookViewSet(generics.ListCreateAPIView): permission_classes = [SVIPPermission,] queryset = Book.objects.all() serializer_class = BookSerializers
全局视图权限
settings.py配置如下:
REST_FRAMEWORK={ "DEFAULT_AUTHENTICATION_CLASSES":["app01.service.auth.Authentication",], "DEFAULT_PERMISSION_CLASSES":["app01.service.permissions.SVIPPermission",] }
如果想添加白名单,在该类下加上permission_classes =[ ]源码找的时候就会先找这里
throttle(访问频率)组件
局部视图throttle:
在app01.service.throttles.py中:
from rest_framework.throttling import BaseThrottle VISIT_RECORD={} class VisitThrottle(BaseThrottle): def __init__(self): self.history=None def allow_request(self,request,view): remote_addr = request.META.get('REMOTE_ADDR') print(remote_addr) import time ctime=time.time() if remote_addr not in VISIT_RECORD: VISIT_RECORD[remote_addr]=[ctime,] return True history=VISIT_RECORD.get(remote_addr) self.history=history while history and history[-1]<ctime-60: history.pop() if len(history)<3: history.insert(0,ctime) return True else: return False def wait(self): import time ctime=time.time() return 60-(ctime-self.history[-1])
在views.py中:
from app01.service.throttles import * class BookViewSet(generics.ListCreateAPIView): throttle_classes = [VisitThrottle,] queryset = Book.objects.all() serializer_class = BookSerializers
全局视图的throttle
REST_FRAMEWORK={ "DEFAULT_AUTHENTICATION_CLASSES":["app01.service.auth.Authentication",], "DEFAULT_PERMISSION_CLASSES":["app01.service.permissions.SVIPPermission",], "DEFAULT_THROTTLE_CLASSES":["app01.service.throttles.VisitThrottle",] }
内置的throttle类
class VisitThrottle(SimpleRateThrottle): scope="visit_rate" def get_cache_key(self, request, view): return self.get_ident(request)
settings.py设置:
REST_FRAMEWORK={ "DEFAULT_AUTHENTICATION_CLASSES":["app01.service.auth.Authentication",], "DEFAULT_PERMISSION_CLASSES":["app01.service.permissions.SVIPPermission",], "DEFAULT_THROTTLE_CLASSES":["app01.service.throttles.VisitThrottle",], "DEFAULT_THROTTLE_RATES":{ "visit_rate":"5/m", } }
解析器
from rest_framework.parsers import JSONParser,FormParser class PublishViewSet(generics.ListCreateAPIView): ######################## parser_classes = [FormParser,JSONParser] ############################ queryset = Publish.objects.all() serializer_class = PublshSerializers def post(self, request, *args, **kwargs): print("request.data",request.data) return self.create(request, *args, **kwargs)
全局:
REST_FRAMEWORK={ "DEFAULT_AUTHENTICATION_CLASSES":["app01.service.auth.Authentication",], "DEFAULT_PERMISSION_CLASSES":["app01.service.permissions.SVIPPermission",], "DEFAULT_THROTTLE_CLASSES":["app01.service.throttles.VisitThrottle",], "DEFAULT_THROTTLE_RATES":{ "visit_rate":"5/m", }, "DEFAULT_PARSER_CLASSES":['rest_framework.parsers.FormParser',] }
URL的编写
from django.conf.urls import url, include from rest_framework import routers from tutorial.quickstart import views router = routers.DefaultRouter() router.register(r'authors', views.AuthorsViewSet) urlpatterns = [ url(r'^', include(router.urls)),
只要注册了router.register,就会有相对应的
path('authors/',views.AuthorModelView.as_view({'get':'list','post':'create'}),name='authors'), re_path(r'^authors/(?P<pk>d+)/$',views.AuthorModelView.as_view({'get':'retrieve','put':'update','delete':'destroy'}),name='authors_detail'),
并且还相应的增加了其他两条restframework的测试url
分页
分页之自定义:
第一版:
from rest_framework.pagination import PageNumberPagination class Mypagination(PageNumberPagination): page_size = 1 page_query_param = 'page' page_size_query_param = "size" max_page_size = 5 class BookView(APIView): # authentication_classes = [TokenAuth,] # [TokenAuth(),] # permission_classes = [] # throttle_classes = [] def get(self,request): book_list=Book.objects.all() # 分页 pnp=Mypagination() books_page=pnp.paginate_queryset(book_list,request,self) bs=BookModelSerializers(books_page,many=True,context={'request': request}) return Response(bs.data)
分页之最终版:
from rest_framework.pagination import PageNumberPagination class Mypagination(PageNumberPagination): page_size = 1 page_query_param = 'page' page_size_query_param = "size" max_page_size = 5 from rest_framework import viewsets class AuthorModelView(viewsets.ModelViewSet): queryset = models.Author.objects.all() serializer_class = AuthorModelSerializer pagination_class = Mypagination
偏移分页
from rest_framework.pagination import LimitOffsetPagination
版本的设置
1.设置settings:
REST_FRAMEWORK={
'DEFAULT_VERSIONING_CLASS':'rest_framework.versioning.URLPathVersioning',#路由配置版本
'DEFAULT_VERSION':'v1', #默认的版本
'ALLOWED_VERSIONS':['v1','v2'], #允许的版本
'VERSION_PARAM':'version', # 版本参数
2.设置路由:
分发的时候设置:
urlpatterns = [ path('admin/', admin.site.urls), re_path(r'^api/(?P<version>w+)/', include('api.urls')), ]
3.获取版本:
request.version #获取版本
跨域请求CORS
CORS: 解决跨域的时候是加上特殊的响应头 jsonp跨域只能是get请求, cors可以发送post和get请求. 配置中间件 from django.utils.deprecation import MiddlewareMixin class CORSMiddleware(MiddlewareMixin): def process_response(self,request,response): #添加响应头 # 允许你的域名来获取我的数据 # 允许所有的域名来获取数据 response['Access-Control-Allow-Origin']='*' # 允许你携带Content-Type请求头 如果要多的用逗号,隔开 response['Access-Control-Allow-Headers']='Content-Type' # 允许你发送DELETE,和PUT response['Access-Control-Allow-Methods']='DELETE,PUT' return response #setting里配置 MIDDLEWARE = [ 'api.cors.CORSMiddleware', ]