文田503：flask-login用户授权案例

admin

#Flask Web开发 (qq.com)

#Flask Web开发 (qq.com)

本案例为python用户授权案例，使用了flask-login和sqlite数据库实现

python app文件

1. # 安装 pip install Flask Flask-Login Flask-SQLAlchemy
   
2. # flasklogin.py
   
3. # sqlite 数据库；数据模型；bootstrap
   
4. from flask import Flask, render_template, redirect, url_for, request, flash
   
5. from flask_login import LoginManager, UserMixin, login_user, login_required, logout_user, current_user
   
6. from flask_sqlalchemy import SQLAlchemy
   
7. 
   
8. app = Flask(__name__)
   
9. app.config['SECRET_KEY'] = '20200808'
   
10. app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///login.db'
    
11. 
    
12. db = SQLAlchemy(app)
    
13. 
    
14. login_manager = LoginManager()
    
15. login_manager.init_app(app)
    
16. login_manager.login_view = 'login'
    
17. 
    
18. 
    
19. ### 创建 User 模型
    
20. class User(UserMixin, db.Model):
    
21.     id = db.Column(db.Integer, primary_key=True)
    
22.     username = db.Column(db.String(80), unique=True, nullable=False)
    
23.     password = db.Column(db.String(120), nullable=False)
    
24. 
    
25. 
    
26. ### 创建数据库
    
27. db.create_all()
    
28. 
    
29. 
    
30. ### 用户加载函数
    
31. @login_manager.user_loader
    
32. def load_user(user_id):
    
33.     return User.query.get(int(user_id))
    
34. 
    
35. 
    
36. ### 登录视图
    
37. @app.route('/', methods=['GET', 'POST'])
    
38. @app.route('/login', methods=['GET', 'POST'])
    
39. def login():
    
40.     if request.method == 'POST':
    
41.         username = request.form['username']
    
42.         password = request.form['password']
    
43.         user = User.query.filter_by(username=username, password=password).first()
    
44. 
    
45.         if user:
    
46.             login_user(user)
    
47.             flash('登录成功！')
    
48.             return redirect(url_for('fs'))
    
49.         else:
    
50.             flash('用户不存在Invalid credentials')
    
51. 
    
52.     return render_template('login.html')
    
53. 
    
54. 
    
55. ### 受保护的视图
    
56. @app.route('/user')
    
57. @login_required
    
58. def user():
    
59.     return f'欢迎： {current_user.username}'
    
60. 
    
61. @app.route('/index')
    
62. # @login_required
    
63. def index():
    
64.     return f'index 欢迎：'
    
65. 
    
66. @app.route('/fs')
    
67. @login_required
    
68. def fs():
    
69.     return f'安全锋速 欢迎：'
    
70. ### 退出
    
71. @app.route('/logout')
    
72. @login_required
    
73. def logout():
    
74.     logout_user()
    
75.     return redirect(url_for('login'))
    
76. 
    
77. 
    
78. if __name__ == '__main__':
    
79.     app.run(debug=True)
    

复制代码

模板文件：templates/login.htlml

1. <!--templates/login.html-->
   
2. <!DOCTYPE html>
   
3. <html>
   
4. <head>
   
5.     <title>登录</title>
   
6. </head>
   
7. <body>
   
8. 
   
9.     <h2>登录</h2>
   
10.     <form method="post">
    
11.         <input type="text" name="username" placeholder="用户名"><br>
    
12.         <input type="password" name="password" placeholder="密码"><br>
    
13.         <input type="submit" value="登录">
    
14.     </form>
    
15. 
    
16. </body>
    
17. </html>
    

复制代码

admin

0512增加部分内容
登录模板文件ulgoin.html

1. {% extends 'base.html' %}
   
2. {% from 'bootstrap5/form.html' import render_form, render_field, render_form_row %}
   
3. 
   
4. {% block title %} edit note {% endblock title %}
   
5. 
   
6. {% block content %}
   
7. <h2>{{title}}</h2>
   
8. <form method='post'>
   
9.     {{ render_form(form) }}
   
10. </form>
    
11. {% endblock content %}

复制代码

基础模板base.html

1. <!--引用bootstrap资源-->
   
2. {% from 'bootstrap5/nav.html' import render_nav_item %}
   
3. {% from 'bootstrap5/utils.html' import render_messages %}
   
4. <!DOCTYPE html>
   
5. <html lang="en">
   
6. <head>
   
7.     <meta charset="utf-8">
   
8.     <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
   
9.     <title>{{ title }}</title>
   
10.     <link rel="icon" href="{{ url_for('static', filename='favicon.ico') }}">
    
11. <!--    引用样式文件-->
    
12.     {{ bootstrap.load_css() }}
    
13.     <style>
    
14.         pre {
    
15.             background: #ddd;
    
16.             padding: 10px;
    
17.         }
    
18.         h2 {
    
19.             margin-top: 20px;
    
20.         }
    
21.         footer {
    
22.             margin: 20px;
    
23.         }
    
24. 
    
25.     </style>
    
26. </head>
    
27. <body>
    
28. 
    
29. 
    
30. <main class="container">
    
31.     {{ render_messages(container=False, dismissible=True) }}
    
32.     {% block content %}{% endblock %}
    
33. </main>
    
34. <!--底部-->
    
35. <footer class="text-center">
    
36.     {% block footer %}
    
37.     <small> © 2018– 2025
    
38.         <script>document.write(new Datetime().getFullYear())</script>
    
39.         <a href="https://www.37ck.cn">37创客</a>
    
40.     </small>
    
41.     {% endblock %}
    
42. </footer>
    
43. <!--引入js效果脚本-->
    
44. {{ bootstrap.load_js() }}
    
45. </body>
    
46. </html>
    

复制代码

admin

1. # 安装 pip install Flask Flask-Login Flask-SQLAlchemy
   
2. from flask import Flask, render_template, redirect, url_for, request, flash
   
3. from flask_login import LoginManager, UserMixin, login_user, login_required, logout_user, current_user
   
4. from flask_sqlalchemy import SQLAlchemy
   
5. 
   
6. app = Flask(__name__)
   
7. app.config['SECRET_KEY'] = 'your_secret_key'
   
8. app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///login.db'
   
9. 
   
10. db = SQLAlchemy(app)
    
11. 
    
12. login_manager = LoginManager()
    
13. login_manager.init_app(app)
    
14. login_manager.login_view = 'login'
    
15. 
    
16. 
    
17. ### 创建 User 模型
    
18. class User(UserMixin, db.Model):
    
19.     id = db.Column(db.Integer, primary_key=True)
    
20.     username = db.Column(db.String(80), unique=True, nullable=False)
    
21.     password = db.Column(db.String(120), nullable=False)
    
22. 
    
23. 
    
24. ### 创建数据库
    
25. # db.create_all()
    
26. 
    
27. 
    
28. ### 用户加载函数
    
29. @login_manager.user_loader
    
30. def load_user(user_id):
    
31.     return User.query.get(int(user_id))
    
32. 
    
33. 
    
34. ### 登录视图
    
35. @app.route('/login', methods=['GET', 'POST'])
    
36. def login():
    
37.     if request.method == 'POST':
    
38.         username = request.form['username']
    
39.         password = request.form['password']
    
40.         user = User.query.filter_by(username=username, password=password).first()
    
41. 
    
42.         if user:
    
43.             login_user(user)
    
44.             return redirect(url_for('protected'))
    
45.         else:
    
46.             flash('用户不存在Invalid credentials')
    
47. 
    
48.     return render_template('login.html')
    
49. 
    
50. 
    
51. ### 受保护的视图
    
52. @app.route('/protected')
    
53. @login_required
    
54. def protected():
    
55.     return f'欢迎： {current_user.username}'
    
56. 
    
57. 
    
58. ### 登出视图
    
59. @app.route('/logout')
    
60. @login_required
    
61. def logout():
    
62.     logout_user()
    
63.     return redirect(url_for('login'))
    
64. 
    
65. 
    
66. if __name__ == '__main__':
    
67.     app.run(debug=True)

复制代码

login.html

1. <!DOCTYPE html>
   
2. <html>
   
3. <head>
   
4.     <title>Login</title>
   
5. </head>
   
6. <body>
   
7. 
   
8.     <h2>Login</h2>
   
9.     <form method="post">
   
10.         <input type="text" name="username" placeholder="Username"><br>
    
11.         <input type="password" name="password" placeholder="Password"><br>
    
12.         <input type="submit" value="Login">
    
13.     </form>
    
14. 
    
15. </body>
    
16. </html>
    

复制代码