django使用django-simple-captcha模块为窗体加上防机器人验证机制
1.安装captcha
pip install django-simple-captcha
(在win10,pycharm,python3.8的环境中,可能安装失败,解决方法:指定版本号,如pip install django-simple-captcha==0.4.6)
接下来还要确定Pillow是否已经安装在系统中,可以使用pip list检查一下
2.在settings.py 配置captcha的相关信息
首先在INSTALL_APPS中添加captcha验证码功能,项目运行时会自动加载catpcha功能,然后对captcha功能进行相关的配置,主要的配置有:验证码的显示顺序,图片噪点,图片大小,背景颜色和验证码内容(当然也可以使用默认配置);具体配置如下:
代码如下:
# django_simple_captcha 验证码基本配置
# 设置验证码的显示顺序,一个验证码识别包含文本框,隐藏域和验证码图片,该配置用于设置三者的显示顺序
CAPTCHA_OUTPUT_FORMAT = '%(text_field)s %(hidden_field)s %(image)s'
# 设置图片噪点
CAPTCHA_NOISE_FUNCTIONS = (
# 设置样式
'captcha.helpers.noise_null',
# 设置干扰线
'captcha.helpers.noise_arcs',
# 设置干扰点
'captcha.helpers.noise_dots'
)
# (验证码图片)图片大小
CAPTCHA_IMAGE_SIZE = (100, 25)
# 设置图片背景颜色
CAPTCHA_BACKGROUND_COLOR = '#ffffff'
# 图片中的文字为随机英文字母,如mdsh
#CAPTCHA_CHALLENGE_FUNCT = 'captcha.helpers.random_char_challenge'
# 图片中的文字为英文单词
# CAPTCHA_CHALLENGE_FUNCT = 'captcha.helpers.word_challenge'
# 图片中的文字为数字表达式,如1+2= </span>
CAPTCHA_CHALLENGE_FUNCT = 'captcha.helpers.math_challenge'
# 设置字符个数
CAPTCHA_LENGTH = 4
# 设置超时(minutes)
CAPTCHA_TIMEOUT = 1
完成上述配置后,要执行数据迁移。 即执行python manage.py migrate指令,会生成一个captcha_captchastore的数据表。
3.定义用户登录表单类:
代码如下:
class LoginForm(forms.Form):
user_name = forms.CharField(label='姓名', max_length=10)
user_password = forms.CharField(label='密码', widget=forms.PasswordInput)
captcha = CaptchaField()
视图函数如下:
def login(request):
if request.method == 'POST':
login_form = forms.LoginForm(request.POST)
if login_form.is_valid():
login_name = request.POST.get('user_name')
login_password = request.POST.get('user_password')
user = authenticate(username=login_name, password=login_password)
if user is not None:
if user.is_active:
auth.login(request, user)
messages.add_message(request, messages.SUCCESS, '成功登录了11')
return redirect('/')
else:
messages.add_message(request, messages.WARNING, '账号尚未启动')
else:
messages.add_message(request, messages.WARNING, '登陆失败')
else:
messages.add_message(request, messages.INFO, '请检查输入的字段内容')
else:
login_form = forms.LoginForm()
return render(request, 'login.html', locals())
def ajax_val(request):
if request.is_ajax():
response = request.GET['response']
hashkey = request.GET['hashkey']
cs = CaptchaStore.objects.filter(response=response,hashkey=hashkey)
if cs:
json_data = {'status': 1}
else:
json_data = {'status': 0}
return JsonResponse(json_data)
else:
json_data = {'status': 0}
return JsonResponse(json_data)
在urls.py加入路径, path('login/', views.login, name='login'),path('ajax_val/',views.ajax_val),
接下来看login.html的代码:
{% extends 'base.html' %}
{% block title %}登录分享日记{% endblock %}
{% block content %}
<div class="container">
{% if message %}
<div class="alert alert-warning">{{ message }}</div>
{% endif %}
{% for message in messages %}
<div class="alert alert-{{ message.tags }}">
{{ message }}
</div>
{% endfor %}
<div class="row">
<div class="col-md-12">
<div class="panel panel-default">
<div class="panel-heading" align="cetnter">
<h3>登陆我的私人日记</h3>
</div>
</div>
</div>
</div>
<form action="." method="post">
{% csrf_token %}
<table>
<tr>
<td>用户名:</td>
<td>{{ login_form.user_name }}</td>
</tr>
<tr>
<td>密码:</td>
<td>{{ login_form.user_password }}</td>
</tr>
<tr>
<td>验证码:</td>
<td>{{ login_form.captcha }}</td>
</tr>
</table>
<input type="submit" value="登录"><br>
</form>
</div>
<script>
$(function(){
// 动态刷新验证码
$('.captcha').click(function (){
$.getJSON("/captcha/refresh/", function(result){
$('.captcha').attr('src', result['image_url']);
$('#id_captcha_0').val(result['key'])
});
});
// 动态验证验证码
$('#id_captcha_1').blur(function(){
$('#captcha_status').remove();
json_data = {
'response': $('#id_captcha_1').val(),
'hashkey': $('#id_captcha_0').val()
}
$.getJSON('/ajax_val/',json_data,function(data){
if(data['status']){
$('#id_captcha_1').after('<span id="captcha_status">*验证码正确</span>')
}else{
$('#id_captcha_1').after('<span id="captcha_status">*验证码错误</span>')
}
})
});
});
</script>
{% endblock %}
其中模板变量login_form.captcha 会生成的html内容如下:
<input autocapitalize="off" autocomplete="off" autocorrect="off" spellcheck="false" id="id_captcha_1" name="captcha_1" type="text">
<input id="id_captcha_0" name="captcha_0" type="hidden" value="e11dad77e41ef5f9d87d5ce989343704d46bf33f">
<img src="/captcha/image/e11dad77e41ef5f9d87d5ce989343704d46bf33f/" alt="captcha" class="captcha">
官方文档: https://django-simple-captcha.readthedocs.io/en/latest/
{% extends 'base.html' %} {% block title %}登录分享日记{% endblock %} {% block content %} <div class="container"> {% if message %} <div class="alert alert-warning">{{ message }}</div> {% endif %} {% for message in messages %} <div class="alert alert-{{ message.tags }}"> {{ message }} </div> {% endfor %} <div class="row"> <div class="col-md-12"> <div class="panel panel-default"> <div class="panel-heading" align="cetnter"> <h3>登陆我的私人日记</h3> </div> </div> </div> </div> <form action="." method="post"> {% csrf_token %} <table> <tr> <td>用户名:</td> <td>{{ login_form.user_name }}</td> </tr> <tr> <td>密码:</td> <td>{{ login_form.user_password }}</td> </tr> <tr> <td>验证码:</td> <td>{{ login_form.captcha }}</td> </tr> </table> <input type="submit" value="登录"><br> </form> </div> <script> $(function(){ // 动态刷新验证码 $('.captcha').click(function (){ $.getJSON("/captcha/refresh/", function(result){ $('.captcha').attr('src', result['image_url']); $('#id_captcha_0').val(result['key']) }); }); // 动态验证验证码 $('#id_captcha_1').blur(function(){ $('#captcha_status').remove(); json_data = { 'response': $('#id_captcha_1').val(), 'hashkey': $('#id_captcha_0').val() } $.getJSON('/ajax_val/',json_data,function(data){ if(data['status']){ $('#id_captcha_1').after('<span id="captcha_status">*验证码正确</span>') }else{ $('#id_captcha_1').after('<span id="captcha_status">*验证码错误</span>') } }) }); }); </script> {% endblock %}
[{% Extends'base.Html' %} {% block title%} dēnglù fēnxiǎng rìjì {% endblock%} {% block content%} <div class="container"> {% if message%} <div class="alert alert-warning">{{message}}</div> {% endif%} {% for message in messages%} <div class="alert alert-{{message.Tags}}"> {{message}} </div> {% endfor%} <div class="row"> <div class="col-md-12"> <div class="panel panel-default"> <div class="panel-heading" align="cetnter"> <h3>dēnglù wǒ de sīrén rìjì </h3> </div> </div> </div> </div> <form action="." Method="post"> {% csrf_token%} <table> <tr> <td>yònghù míng:</Td> <td>{{login_form.User_name}}</td> </tr> <tr> <td>mìmǎ:</Td> <td>{{login_form.User_password}}</td> </tr> <tr> <td>yànzhèng mǎ:</Td> <td>{{login_form.Captcha}}</td> </tr> </table> <input type="submit" value="dēnglù"><br> </form> </div> <script> $(function(){ // dòngtài shuāxīn yànzhèng mǎ $('.Captcha').Click(function (){ $.GetJSON("/captcha/refresh/", function(result){ $('.Captcha').Attr('src', result['image_url']); $('#id_captcha_0').Val(result['key']) }); }); // dòngtài yànzhèng yànzhèng mǎ $('#id_captcha_1').Blur(function(){ $('#captcha_status').Remove(); json_data = { 'response': $('#Id_captcha_1').Val(), 'hashkey': $('#Id_captcha_0').Val() } $.GetJSON('/ajax_val/',json_data,function(data){ if(data['status']){ $('#id_captcha_1').After('<span id="captcha_status">*yànzhèng mǎ zhèngquè </span>') }else{ $('#id_captcha_1').After('<span id="captcha_status">*yànzhèng mǎ cuòwù </span>') } }) }); }); </script> {% endblock%}]
{% Extends 'base.html'%}
{% Block title%} Log in to share diary {% endblock%}
{% Block content%}
<Div class = "container">
{% If message%}
<Div class = "alert alert-warning"> {{message}} </ div>
{% Endif%}
{% For message in messages%}
<Div class = "alert alert - {{message.tags}}">
{{Message}}
</ Div>
{% Endfor%}
<Div class = "row">
<Div class = "col-md-12">
<Div class = "panel panel-default">
<Div class = "panel-heading" align = "cetnter">
<H3> visit my private diary </ h3>
</ Div>
</ Div>
</ Div>
</ Div>
<Form action = "." Method = "post">
{% Csrf_token%}
<Table>
<Tr>
<Td> Username: </ td>
<Td> {{login_form.user_name}} </ td>
</ Tr>
<Tr>
<Td> Password: </ td>
<Td> {{login_form.user_password}} </ td>
</ Tr>
<Tr>
<Td> codes: </ td>
<Td> {{login_form.captcha}} </ td>
</ Tr>
</ Table>
<Input type = "submit" value = "Login"> <br>
</ Form>
</ Div>
<Script>
$ (Function () {
// dynamic refresh code
$ ( '. Captcha'). Click (function () {
$ .GetJSON ( "/ captcha / refresh /", function (result) {
. $ ( '. Captcha') attr ( 'src', result [ 'image_url']);
$ ( '# Id_captcha_0'). Val (result [ 'key'])
});
});
// dynamic verification code
$ ( '# Id_captcha_1'). Blur (function () {
$ ( '# Captcha_status') remove ().;
json_data = {
'Response': $ ( '# id_captcha_1') val (),.
'Hashkey': $ ( '# id_captcha_0') val ().
}
$ .GetJSON ( '/ ajax_val /', json_data, function (data) {
if (data [ 'status']) {
$ ( '# Id_captcha_1'). After ( '<span id = "captcha_status"> * code is correct </ span>')
} Else {
$ ( '# Id_captcha_1'). After ( '<span id = "captcha_status"> * error codes </ span>')
}
})
});
});
</ Script>
{% Endblock%}
{% Block title%} Log in to share diary {% endblock%}
{% Block content%}
<Div class = "container">
{% If message%}
<Div class = "alert alert-warning"> {{message}} </ div>
{% Endif%}
{% For message in messages%}
<Div class = "alert alert - {{message.tags}}">
{{Message}}
</ Div>
{% Endfor%}
<Div class = "row">
<Div class = "col-md-12">
<Div class = "panel panel-default">
<Div class = "panel-heading" align = "cetnter">
<H3> visit my private diary </ h3>
</ Div>
</ Div>
</ Div>
</ Div>
<Form action = "." Method = "post">
{% Csrf_token%}
<Table>
<Tr>
<Td> Username: </ td>
<Td> {{login_form.user_name}} </ td>
</ Tr>
<Tr>
<Td> Password: </ td>
<Td> {{login_form.user_password}} </ td>
</ Tr>
<Tr>
<Td> codes: </ td>
<Td> {{login_form.captcha}} </ td>
</ Tr>
</ Table>
<Input type = "submit" value = "Login"> <br>
</ Form>
</ Div>
<Script>
$ (Function () {
// dynamic refresh code
$ ( '. Captcha'). Click (function () {
$ .GetJSON ( "/ captcha / refresh /", function (result) {
. $ ( '. Captcha') attr ( 'src', result [ 'image_url']);
$ ( '# Id_captcha_0'). Val (result [ 'key'])
});
});
// dynamic verification code
$ ( '# Id_captcha_1'). Blur (function () {
$ ( '# Captcha_status') remove ().;
json_data = {
'Response': $ ( '# id_captcha_1') val (),.
'Hashkey': $ ( '# id_captcha_0') val ().
}
$ .GetJSON ( '/ ajax_val /', json_data, function (data) {
if (data [ 'status']) {
$ ( '# Id_captcha_1'). After ( '<span id = "captcha_status"> * code is correct </ span>')
} Else {
$ ( '# Id_captcha_1'). After ( '<span id = "captcha_status"> * error codes </ span>')
}
})
});
});
</ Script>
{% Endblock%}
