python - 有人可以建议如何实现自定义 Django PasswordResetView 吗？

Question

我只想将密码重置链接发送到已确认的电子邮件地址。用户还可以通过搜索用户名或电子邮件地址来请求密码重置链接，这在默认的 django 中不可用。我已经尝试和编辑默认的 django 密码重置 View 和表单很多天了。但不为我工作。

Answer 1

您可以从以下位置扩展PasswordResetView 休息验证 View 并在其中做更多的逻辑 如示例所示

from rest_auth.views import PasswordChangeView, PasswordResetView, PasswordResetConfirmView
sensitive_post_parameters_m = method_decorator(
    sensitive_post_parameters(
        'password', 'old_password', 'new_password1', 'new_password2'
    )
)

class PasswordResetViewNew(PasswordResetView):
    def post(self, request, *args, **kwargs):
        email = request.data.get('email')
        try:
            if User.objects.get(email=email).active:

                return super(PasswordResetViewNew, self).post(request, *args, **kwargs)
        except:
            # this for if the email is not in the db of the system
            return super(PasswordResetViewNew, self).post(request, *args, **kwargs)

在网址中

    path('password/reset/', PasswordResetViewNew.as_view()),

编辑回答“如何通过用户名搜索发送密码重置链接”

PasswordResetView 的默认序列化程序包含

email = serializers.EmailField()

这意味着端点不会接受除电子邮件之外的任何内容 所以我们会做一些技巧让它接受字符，这样我们就可以向它发送用户名

首先我们要扩展 来自rest_auth.serializers的PasswordResetSerializer 并进行一些维护

from rest_auth.serializers import PasswordResetSerializer
from django.conf import settings
from django.contrib.auth.forms import PasswordResetForm

class TestSerializer(PasswordResetSerializer):
    email = serializers.CharField()
    # here changed the email to accept any chars
    reset_form = PasswordResetForm()

    def validate_email(self, value):
        #here we will trick it be make email really have the email of the username entered

        mutable = self.initial_data
        self.initial_data._mutable = True
        self.initial_data['email'] = User.objects.get(username=self.initial_data.get('email'))
        # don't forget to handle exception for username that not in db
        self.initial_data._mutable = mutable
        return super(TestSerializer, self).validate_email(value)

我们的观点发生了一点变化，就像这样

from django.utils.translation import gettext_lazy as _
#don't forget to import PasswordResetView, TestSerializer

class PasswordResetViewNew(PasswordResetView):
    serializer_class = TestSerializer
    # here we changed the default serializer to our new serializer
    def post(self, request, *args, **kwargs):
        serializer = self.get_serializer(data=request.data)
        serializer.is_valid(raise_exception=True)
        serializer.data['email'] = User.objects.get(username=serializer.data.get('email'))
        # here we trick it again and change the email with the email for the username entered
        serializer.save()
        # Return the success message with OK HTTP status
        return Response(
            {"detail": _("Password reset e-mail has been sent.")},
            status=status.HTTP_200_OK
        )