1. settings
WHITE_REGEX_URL_LIST = [ "/register/", "/send/sms/", "/login/", "/image/code/", "/index/", ]
2. 中間件
from django.utils.deprecation import MiddlewareMixin from wed import models from django.db.models import settings from django.shortcuts import redirect class AuthMiddleware(MiddlewareMixin): def process_request(self, request): user_id = request.session.get('user_id', 0) user_obj = models.UserInfo.objects.filter(id=user_id).first() request.tracer = user_obj # 白名單 """ 1. 獲取當用戶訪問的URL 2. 檢查URL是否在白名單中,如果再則可以繼續向后訪問,如果不在則進行判斷是否已登錄 """
# 獲取訪問者的url if request.path_info in settings.WHITE_REGEX_URL_LIST: return if not request.tracer: return redirect('login')
3. settings配置
MIDDLEWARE = [ 'django.middleware.security.SecurityMiddleware', ...... 'wed.middleware.auth.AuthMiddleware', ]