Django-allauth:我的 post-使用 Google Auth 的注册重定向流程被破坏了,我不知道为什么
Django-allauth: My post-sign-up redirect flow with Google Auth is broken and I can't figure out why
我将 django-allauth 与我的 Django 应用程序集成在一起,但有些地方没有完全正常工作:
问题
如果在我的数据库中没有帐户的用户尝试使用 google allauth 过程进行注册,在身份验证过程之后,它将被发送到主页(在登录过滤器后面)成功。
但是,如果在我的数据库中已有帐户(手动创建)的用户在身份验证过程之后尝试通过访问 /accounts/google/login/
使用 google 身份验证登录它被发送到 /accounts/social/signup/
(django-allauth 有一个奇怪的页面)。有趣的是,用户已经登录,如果他们尝试访问主页,他们就可以访问,一切正常。所以只是重定向被破坏了。
我将范围缩小到用户的电子邮件已经存在但没有关联的社交帐户这一事实。
设置
我有一个自定义用户模型,其中电子邮件是用户的主要唯一 ID。
from django.contrib.auth.base_user import BaseUserManager
from django.db import models
from django.contrib.auth.models import AbstractUser
from django.utils.translation import ugettext_lazy as _
class CustomUserManager(BaseUserManager):
"""
Custom user model manager where email is the unique identifiers
for authentication instead of usernames.
"""
def create_user(self, email, password, **extra_fields):
"""
Create and save a User with the given email and password.
"""
if not email:
raise ValueError(_('The Email must be set'))
email = self.normalize_email(email)
user = self.model(email=email, **extra_fields)
user.set_password(password)
user.save()
return user
def create_superuser(self, email, password, **extra_fields):
"""
Create and save a SuperUser with the given email and password.
"""
extra_fields.setdefault('is_staff', True)
extra_fields.setdefault('is_superuser', True)
extra_fields.setdefault('is_active', True)
if extra_fields.get('is_staff') is not True:
raise ValueError(_('Superuser must have is_staff=True.'))
if extra_fields.get('is_superuser') is not True:
raise ValueError(_('Superuser must have is_superuser=True.'))
return self.create_user(email, password, **extra_fields)
class CustomUser(AbstractUser):
username = None
email = models.EmailField(_('email address'), unique=True)
USERNAME_FIELD = 'email'
REQUIRED_FIELDS = []
objects = CustomUserManager()
def __str__(self):
return self.email
我有一个适配器,我希望它能解决我的问题但没有(所以我做错了)
class MySocialAccountAdapter(DefaultSocialAccountAdapter):
def pre_social_login(self, request, sociallogin):
user = sociallogin.user
if user.id:
return
try:
# if user exists, connect the account to the existing account and login
customer = CustomUser.objects.get(email=user.email)
sociallogin.state['process'] = 'connect'
#sociallogin.connect(request, user)
perform_login(request, customer, 'none')
except CustomUser.DoesNotExist:
pass
我的设置
...
# Application definition
INSTALLED_APPS = [
'django.contrib.admin',
'django.contrib.auth',
'django.contrib.sites',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
'allauth',
'allauth.account',
'allauth.socialaccount',
'allauth.socialaccount.providers.google',
'whitenoise.runserver_nostatic', # new
]
MIDDLEWARE = [
#'django.middleware.security.SecurityMiddleware',
'whitenoise.middleware.WhiteNoiseMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
]
...
AUTH_PASSWORD_VALIDATORS = [
{
'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
},
]
AUTHENTICATION_BACKENDS = [
'django.contrib.auth.backends.ModelBackend',
'allauth.account.auth_backends.AuthenticationBackend',
'guardian.backends.ObjectPermissionBackend',
]
SITE_ID = 3
LOGIN_REDIRECT_URL = '/'
ACCOUNT_ADAPTER = 'myusermodel.adapter.MyAccountAdapter'
# Additional configuration settings
SOCIALACCOUNT_QUERY_EMAIL = True
ACCOUNT_LOGOUT_ON_GET = True
ACCOUNT_UNIQUE_EMAIL = True
ACCOUNT_EMAIL_REQUIRED = True
ACCOUNT_USER_MODEL_USERNAME_FIELD = None
ACCOUNT_USERNAME_REQUIRED = False
ACCOUNT_AUTHENTICATION_METHOD = 'email'
AUTH_USER_MODEL = 'myusermodel.CustomUser'
SOCIALACCOUNT_PROVIDERS = {
'google': {
'SCOPE': [
'profile',
'email',
],
'AUTH_PARAMS': {
'access_type': 'online',
}
}
}
...
已修复!
这是我的新适配器,就这么简单!
from allauth.account.adapter import DefaultAccountAdapter
from allauth.socialaccount.adapter import DefaultSocialAccountAdapter
from django.shortcuts import redirect, reverse
from myusermodel.models import CustomUser
class MyAccountAdapter(DefaultAccountAdapter):
def get_login_redirect_url(self, request):
print('I am entering get_login_redirect_url')
if 'team_membership_project_id' in request.session:
parameters = {}
parameters['invitation_id'] = request.session['invitation_id']
path = reverse('action:accept_invitation', urlconf=None, args=None, kwargs=parameters)
return path
path = '/'
return path
def is_open_for_signup(self, request):
"""
Checks whether or not the site is open for signups.Next to simply returning True/False you can also intervene the
regular flow by raising an ImmediateHttpResponse. (Comment reproduced from the overridden method.)
"""
return True
class MySocialAccountAdapter(DefaultSocialAccountAdapter):
def pre_social_login(self, request, sociallogin):
user = CustomUser.objects.filter(email=sociallogin.user.email).first()
if user and not sociallogin.is_existing:
sociallogin.connect(request, user)
我将 django-allauth 与我的 Django 应用程序集成在一起,但有些地方没有完全正常工作:
问题
如果在我的数据库中没有帐户的用户尝试使用 google allauth 过程进行注册,在身份验证过程之后,它将被发送到主页(在登录过滤器后面)成功。
但是,如果在我的数据库中已有帐户(手动创建)的用户在身份验证过程之后尝试通过访问
/accounts/google/login/
使用 google 身份验证登录它被发送到/accounts/social/signup/
(django-allauth 有一个奇怪的页面)。有趣的是,用户已经登录,如果他们尝试访问主页,他们就可以访问,一切正常。所以只是重定向被破坏了。
我将范围缩小到用户的电子邮件已经存在但没有关联的社交帐户这一事实。
设置
我有一个自定义用户模型,其中电子邮件是用户的主要唯一 ID。
from django.contrib.auth.base_user import BaseUserManager
from django.db import models
from django.contrib.auth.models import AbstractUser
from django.utils.translation import ugettext_lazy as _
class CustomUserManager(BaseUserManager):
"""
Custom user model manager where email is the unique identifiers
for authentication instead of usernames.
"""
def create_user(self, email, password, **extra_fields):
"""
Create and save a User with the given email and password.
"""
if not email:
raise ValueError(_('The Email must be set'))
email = self.normalize_email(email)
user = self.model(email=email, **extra_fields)
user.set_password(password)
user.save()
return user
def create_superuser(self, email, password, **extra_fields):
"""
Create and save a SuperUser with the given email and password.
"""
extra_fields.setdefault('is_staff', True)
extra_fields.setdefault('is_superuser', True)
extra_fields.setdefault('is_active', True)
if extra_fields.get('is_staff') is not True:
raise ValueError(_('Superuser must have is_staff=True.'))
if extra_fields.get('is_superuser') is not True:
raise ValueError(_('Superuser must have is_superuser=True.'))
return self.create_user(email, password, **extra_fields)
class CustomUser(AbstractUser):
username = None
email = models.EmailField(_('email address'), unique=True)
USERNAME_FIELD = 'email'
REQUIRED_FIELDS = []
objects = CustomUserManager()
def __str__(self):
return self.email
我有一个适配器,我希望它能解决我的问题但没有(所以我做错了)
class MySocialAccountAdapter(DefaultSocialAccountAdapter):
def pre_social_login(self, request, sociallogin):
user = sociallogin.user
if user.id:
return
try:
# if user exists, connect the account to the existing account and login
customer = CustomUser.objects.get(email=user.email)
sociallogin.state['process'] = 'connect'
#sociallogin.connect(request, user)
perform_login(request, customer, 'none')
except CustomUser.DoesNotExist:
pass
我的设置
...
# Application definition
INSTALLED_APPS = [
'django.contrib.admin',
'django.contrib.auth',
'django.contrib.sites',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
'allauth',
'allauth.account',
'allauth.socialaccount',
'allauth.socialaccount.providers.google',
'whitenoise.runserver_nostatic', # new
]
MIDDLEWARE = [
#'django.middleware.security.SecurityMiddleware',
'whitenoise.middleware.WhiteNoiseMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
]
...
AUTH_PASSWORD_VALIDATORS = [
{
'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
},
]
AUTHENTICATION_BACKENDS = [
'django.contrib.auth.backends.ModelBackend',
'allauth.account.auth_backends.AuthenticationBackend',
'guardian.backends.ObjectPermissionBackend',
]
SITE_ID = 3
LOGIN_REDIRECT_URL = '/'
ACCOUNT_ADAPTER = 'myusermodel.adapter.MyAccountAdapter'
# Additional configuration settings
SOCIALACCOUNT_QUERY_EMAIL = True
ACCOUNT_LOGOUT_ON_GET = True
ACCOUNT_UNIQUE_EMAIL = True
ACCOUNT_EMAIL_REQUIRED = True
ACCOUNT_USER_MODEL_USERNAME_FIELD = None
ACCOUNT_USERNAME_REQUIRED = False
ACCOUNT_AUTHENTICATION_METHOD = 'email'
AUTH_USER_MODEL = 'myusermodel.CustomUser'
SOCIALACCOUNT_PROVIDERS = {
'google': {
'SCOPE': [
'profile',
'email',
],
'AUTH_PARAMS': {
'access_type': 'online',
}
}
}
...
已修复!
这是我的新适配器,就这么简单!
from allauth.account.adapter import DefaultAccountAdapter
from allauth.socialaccount.adapter import DefaultSocialAccountAdapter
from django.shortcuts import redirect, reverse
from myusermodel.models import CustomUser
class MyAccountAdapter(DefaultAccountAdapter):
def get_login_redirect_url(self, request):
print('I am entering get_login_redirect_url')
if 'team_membership_project_id' in request.session:
parameters = {}
parameters['invitation_id'] = request.session['invitation_id']
path = reverse('action:accept_invitation', urlconf=None, args=None, kwargs=parameters)
return path
path = '/'
return path
def is_open_for_signup(self, request):
"""
Checks whether or not the site is open for signups.Next to simply returning True/False you can also intervene the
regular flow by raising an ImmediateHttpResponse. (Comment reproduced from the overridden method.)
"""
return True
class MySocialAccountAdapter(DefaultSocialAccountAdapter):
def pre_social_login(self, request, sociallogin):
user = CustomUser.objects.filter(email=sociallogin.user.email).first()
if user and not sociallogin.is_existing:
sociallogin.connect(request, user)