I found the django-registration app, but it seems to complex for what I am trying to do. I want users to simply enter their e-mail (username) + a password and automatically be registered. No activations or confirmations. Hacker News style. Does anyone know what the simplest way to implement this would be? Is there something pre-existing out there that you know of (I couldn't find anything), should I somehow modify django-registration, or build this on my own?
Login/Authentication
To make Django authenticate using email/password instead of username/password, you will need to add to your settings.py:
AUTHENTICATION_BACKENDS = ('myproject.myauthenticationbackend')
This authentication backend needs to be able to authenticate a user based on email/password. A good email authentication backend can be found here: http://djangosnippets.org/snippets/74/
User Registration
Normally, your registration form will ask user for the email and password. However, Django's auth User model requires every user have a username. One way to handle adding a username is - upon saving of the registration modelForm, generate a random username (since we're not using it anyways).
You will need to check manually that the email the user has entered is already registered in your system.
I've also written a blog post about it a while back and has more complete notes on email authentication. It also includes a sample email/password registration form:
http://www.xairon.net/2011/05/django-email-only-authentication/
I don't know any app which is doing that but it seems quite simple. I don't think it is necessary to modify and use django-registration in this case.
Create a form that will ask for email and password and then create the corresponding user. The username may be generated from a slug of the email address.
Look at the following snippet for allowing to authenticate with an email address. http://djangosnippets.org/snippets/74/
Related
Want to integrating Email service with Django using Mailchimp.
I want to essentially use mailchimp for all email communications - new user registration on the site, forgot password etc.
What I want to do is something like -
1.Setup a specific email in mailchimp, such as the 'forgot password email'
When a user forgets their password, I want to trigger mailchimp to send the specified mail
Does anyone have experience doing the above?
Thanks
Django provides several views that you can use for handling login, logout, and password management. You have to check documentation: Authentication Views.
Then you can use them like here:
How to Use Django's Built-in Login System or How to Create a Change Password View
I know that your are asking about mailchimp but check this:
https://simpleisbetterthancomplex.com/tutorial/2017/05/27/how-to-configure-mailgun-to-send-emails-in-a-django-app.html
Here you have nice tutorial how to configure Mailgun to send emails in a Django project.
ps. great django blog check it out!
As the title says, I'm developing a Django app which uses another API to authenticate the user. The external API is quite simple and returns a certificate if the user is properly authenticated. My app should not keep any user's information, except it's certificate and id (which I'm keeping as session variables).
As a drawback of this implementation, I'm not using Django’s authentication system and all the practical methods it offers, like to check if the user is_authenticated, is_anonymous or to get user's permissions.
As the user must be logged to access some pages of my app, I must aswell ask him/her to log in so that he/she could continue. Therefore, using #login_required would be handful.
I must also create a Access Control module to check permissions and to allow access to some restricted areas of the app according to groups of users (common users, admins, etc.).
Do you guys know how could I customize Django's authentication system to handle all theses issues?
You have to keep logged in user inside your request so just log him without authentication
from django.contrib.auth import login
def authenticate_by_api_view(request):
certificate = do_the_magic()
if certificate_valid(certificate):
user = User()
#you can set ID here and save the user to the DB then
login(request, user)
If you don't want to save user at all you can take a look at the django-lazysignup project or use rather Django sessions framework
I'm using Django to develop the backend of my mobile app. I noticed some app have an 'one tap registration" functionality. User can just tap a button and a user id is generated for him, he can upload his data to his account already. Later when he has time, he can update info like username, password or email.
I'm wondering how can I do this with Django, I check django-user-accounts or the native Django.contrib.auth, but it seems they always require username or email at first.
If you are planning on using django.contrib.auth, you can write your own custom user model in Django 1.5. The example listed in the docs would work for your use-case.
You don't need to extend AbstractBaseUser, but if you do, it expects a USERNAME_FIELD value. Alternatively you can use any kind of model you want, but without a USERNAME_FIELD convenient methods like login() and logout() and authenticate() may break.
I have simple form for create new user in Django.
Also I want that request (from user) forward to the administrator's email, and just admin can enable that account. User has to wait respond from admin. If admin enable that account, user is going to be able to use account!
Create the user with is_active = False, Then you can easily filter those user on django admin panel.
Or you can use django signal such as post_save signal to send an email to administrator's email, email can be included with an activation link which is unique for activating the user.
You can create a separate model to keep inactivated user and for each record generate an random-hashed key. You can use that random-hashed key (token) in activation link that you sending to administrator's email.
There is already some application that let you to handle registration, for example django-registration. But your case it little bit tricky. Because you want to admin be able to activate those users. So I suggest you to look at django-registration source code. It's so clear and easy to understand. Just read the code and you will get the point.
I have been using Django's built in password reset views and forms to great success, but I'm not sure how:
I could customize the error messages in each of the forms' field validation. For instance, rather than the default message: 'That e-mail address doesn't have an associated user account. Are you sure you've registered?', when an invalid email is entered, I want it to say something else.
I am using built-in facebook authentication (Django-facebook), so if a user's email is linked with a facebook account, I don't want to send him an email to reset the django User account's password. How can I explicitly check whether or not the user has an associated Facebook model (ie. if user.get_profile().facebook_data = True or something)?
The crux of this question really extends down to one thing, which is how I can extend the forms in the built in password reset fields. Based on the documentation (ie. https://docs.djangoproject.com/en/dev/ref/forms/fields/) I know I can do so for at least 1, not sure about 2 in forms I create from scratch, but not sure where to get started for built-in cases.