In order to make the registration of the login page in the same style with the design throughout the site, you can prepare a design template and replace the url pattern to give us an view of the desired page with the desired pattern. It may also be useful for the introduction of functional locks from password guessing and more intelligent redirect the user to a page of the site after login, depending on whether the user has a status of staff or not.
To work with the user authorization propose to use a separate application/module that will be called accounts .
Authorization Form is not required to write, because you can use the standard form AuthenticationForm , you will need to use in the login page template.
accounts module structure
accounts/ templates/ accounts/ login.html login_widget.html __init__.py admin.py apps.py models.py special_func.py urls.py views.py
This module uses two templates:
- login.html - a template for the login page
- login_widget.html - a template for login widget that can be placed on any page of the site, the user can log in, not only from the login page, but also from any page with the article, for example.
special_func.py file contains some useful features, such as the receipt of the previous Url from request to redirect the user back to the page where the user is logged in.
login_widget.html
I remind you that I use django_bootstrap3 on the site, so the template will be using it.
<form id="contact_form" action="{% url 'accounts:login' %}" method="post"> {% load bootstrap3 %} {% csrf_token %} {% bootstrap_form login_form %} {% buttons %} <div class="form-group"> <button type="submit" class="btn btn-primary">Login</button> </div> {% endbuttons %} </form>
login.html
The template is added to the login widget. By the same principle, you can add the widget to any login page anywhere in the site.
{% extends 'home/base.html' %} {% block content %} <div class="col-md-offset-3 col-md-6 voffset-60"> <h1>Login to site</h1> {% include 'accounts/login_widget.html' %} </div> {% endblock %}
urls.py files
To replace the login page, and in general authorization to use the widget, you must add the following url patterns to urls.py of your project.
from django.conf.urls import url, include from django.contrib import admin from accounts.views import ELoginView # View of autorization of accounts module # To intercept the login page, you must set the path to this page # befor url to admin panel and specify the view # that will now handle authentication urlpatterns = [ url(r'^admin/login/', ELoginView.as_view()), url(r'^admin/', admin.site.urls), url(r'^accounts/', include('accounts.urls')), # also add url authorization module ]
urls.py accounts module file will look as follows:
# -*- coding: utf-8 -*- from django.conf.urls import url from . import views app_name = 'accounts' urlpatterns = [ url(r'^login/$', views.ELoginView.as_view(), name='login'), ]
settings.py и apps.py
Do not forget to register the authorization module in the site settings.
apps.py
from django.apps import AppConfig class AccountsConfig(AppConfig): name = 'accounts'
settings.py
INSTALLED_APPS = [ 'accounts.apps.AccountsConfig', ]
views.py
And now for the view, which will process the authorization as from the login page and another page with lyuoy.
# -*- coding: utf-8 -*- from urllib.parse import urlparse from django.shortcuts import redirect, render_to_response from django.contrib import auth from django.template.context_processors import csrf from django.views import View from django.contrib.auth.forms import AuthenticationForm from .special_func import get_next_url class ELoginView(View): def get(self, request): # if the user is logged in, then do a redirect to the home page if auth.get_user(request).is_authenticated: return redirect('/') else: # Otherwise, form a context with the authorization form # and we return to this page context. # It works, for url - /admin/login/ and for /accounts/login/ context = create_context_username_csrf(request) return render_to_response('accounts/login.html', context=context) def post(self, request): # having received the authorization request form = AuthenticationForm(request, data=request.POST) # check the correct form, that there is a user and he entered the correct password if form.is_valid(): # if successful authorizing user auth.login(request, form.get_user()) # get previous url next = urlparse(get_next_url(request)).path # and if the user of the number of staff and went through url /admin/login/ # then redirect the user to the admin panel if next == '/admin/login/' and request.user.is_staff: return redirect('/admin/') # otherwise do a redirect to the previous page, # in the case of a / accounts / login / will happen is another redirect to the home page # in the case of any other url, will return the user to the url return redirect(next) # If not true, then the user will appear on the login page # and see an error message context = create_context_username_csrf(request) context['login_form'] = form return render_to_response('accounts/login.html', context=context) # helper method to generate a context csrf_token # and adding a login form in this context def create_context_username_csrf(request): context = {} context.update(csrf(request)) context['login_form'] = AuthenticationForm return context
For Django I recommend VDS-server of Timeweb hoster .
Добрый вечер Евгений! Я сделал себе авторизацию аналогичную вашей, все работает, кроме возврата к предидущей странице. Редеректит всегда на главную, хотя в логах сервера вижу запросы на правильный редирект. При переходе по ссылке /test/, меня редиректит на страницу авторизации(как и должно происходить в моем случае), после авторизации меня втупую перебрасывает на главную а не на предидущую страницу.