Python Flask wtfroms组件

简介

WTForms是一个支持多个web框架的form组件,主要用于对用户请求数据进行验证。

安装:

pip3 install wtforms

用户登录注册示例

1. 用户登录

当用户登录时候,需要对用户提交的用户名和密码进行多种格式校验。如:

用户不能为空;用户长度必须大于6;

密码不能为空;密码长度必须大于12;密码必须包含 字母、数字、特殊字符等(自定义正则);

#!/usr/bin/env python
# -*- coding:utf-8 -*-
from flask import Flask, render_template, request, redirect
from wtforms import Form
from wtforms.fields import core
from wtforms.fields import html5
from wtforms.fields import simple
from wtforms import validators
from wtforms import widgets

app = Flask(__name__, template_folder=‘templates‘)
app.debug = True

class LoginForm(Form):
    name = simple.StringField(
        label=‘用户名‘,
        validators=[
            validators.DataRequired(message=‘用户名不能为空.‘),
            validators.Length(min=6, max=18, message=‘用户名长度必须大于%(min)d且小于%(max)d‘)
        ],
        widget=widgets.TextInput(),
        render_kw={‘class‘: ‘form-control‘}

    )
    pwd = simple.PasswordField(
        label=‘密码‘,
        validators=[
            validators.DataRequired(message=‘密码不能为空.‘),
            validators.Length(min=8, message=‘用户名长度必须大于%(min)d‘),
            validators.Regexp(regex="^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*[[email protected]$!%*?&])[A-Za-z\[email protected]$!%*?&]{8,}",
                              message=‘密码至少8个字符,至少1个大写字母,1个小写字母,1个数字和1个特殊字符‘)

        ],
        widget=widgets.PasswordInput(),
        render_kw={‘class‘: ‘form-control‘}
    )

@app.route(‘/login‘, methods=[‘GET‘, ‘POST‘])
def login():
    if request.method == ‘GET‘:
        form = LoginForm()
        return render_template(‘login.html‘, form=form)
    else:
        form = LoginForm(formdata=request.form)
        if form.validate():
            print(‘用户提交数据通过格式验证,提交的值为:‘, form.data)
        else:
            print(form.errors)
        return render_template(‘login.html‘, form=form)

if __name__ == ‘__main__‘:
    app.run()

app.py
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <title>Title</title>
</head>
<body>
<h1>登录</h1>
<form method="post">
    <!--<input type="text" name="name">-->
    <p>{{form.name.label}} {{form.name}} {{form.name.errors[0] }}</p>

    <!--<input type="password" name="pwd">-->
    <p>{{form.pwd.label}} {{form.pwd}} {{form.pwd.errors[0] }}</p>
    <input type="submit" value="提交">
</form>
</body>
</html>

login.html

2. 用户注册

注册页面需要让用户输入:用户名、密码、密码重复、性别、爱好等。

from flask import Flask, render_template, request, redirect
from wtforms import Form
from wtforms.fields import core
from wtforms.fields import html5
from wtforms.fields import simple
from wtforms import validators
from wtforms import widgets

app = Flask(__name__, template_folder=‘templates‘)
app.debug = True

class RegisterForm(Form):
    name = simple.StringField(
        label=‘用户名‘,
        validators=[
            validators.DataRequired()
        ],
        widget=widgets.TextInput(),
        render_kw={‘class‘: ‘form-control‘},
        default=‘alex‘
    )

    pwd = simple.PasswordField(
        label=‘密码‘,
        validators=[
            validators.DataRequired(message=‘密码不能为空.‘)
        ],
        widget=widgets.PasswordInput(),
        render_kw={‘class‘: ‘form-control‘}
    )

    pwd_confirm = simple.PasswordField(
        label=‘重复密码‘,
        validators=[
            validators.DataRequired(message=‘重复密码不能为空.‘),
            validators.EqualTo(‘pwd‘, message="两次密码输入不一致")
        ],
        widget=widgets.PasswordInput(),
        render_kw={‘class‘: ‘form-control‘}
    )

    email = html5.EmailField(
        label=‘邮箱‘,
        validators=[
            validators.DataRequired(message=‘邮箱不能为空.‘),
            validators.Email(message=‘邮箱格式错误‘)
        ],
        widget=widgets.TextInput(input_type=‘email‘),
        render_kw={‘class‘: ‘form-control‘}
    )

    gender = core.RadioField(
        label=‘性别‘,
        choices=(
            (1, ‘男‘),
            (2, ‘女‘),
        ),
        coerce=int
    )
    city = core.SelectField(
        label=‘城市‘,
        choices=(
            (‘bj‘, ‘北京‘),
            (‘sh‘, ‘上海‘),
        )
    )

    hobby = core.SelectMultipleField(
        label=‘爱好‘,
        choices=(
            (1, ‘篮球‘),
            (2, ‘足球‘),
        ),
        coerce=int
    )

    favor = core.SelectMultipleField(
        label=‘喜好‘,
        choices=(
            (1, ‘篮球‘),
            (2, ‘足球‘),
        ),
        widget=widgets.ListWidget(prefix_label=False),
        option_widget=widgets.CheckboxInput(),
        coerce=int,
        default=[1, 2]
    )

    def __init__(self, *args, **kwargs):
        super(RegisterForm, self).__init__(*args, **kwargs)
        self.favor.choices = ((1, ‘篮球‘), (2, ‘足球‘), (3, ‘羽毛球‘))

    def validate_pwd_confirm(self, field):
        """
        自定义pwd_confirm字段规则,例:与pwd字段是否一致
        :param field:
        :return:
        """
        # 最开始初始化时,self.data中已经有所有的值

        if field.data != self.data[‘pwd‘]:
            # raise validators.ValidationError("密码不一致") # 继续后续验证
            raise validators.StopValidation("密码不一致")  # 不再继续后续验证

@app.route(‘/register‘, methods=[‘GET‘, ‘POST‘])
def register():
    if request.method == ‘GET‘:
        form = RegisterForm(data={‘gender‘: 1})
        return render_template(‘register.html‘, form=form)
    else:
        form = RegisterForm(formdata=request.form)
        if form.validate():
            print(‘用户提交数据通过格式验证,提交的值为:‘, form.data)
        else:
            print(form.errors)
        return render_template(‘register.html‘, form=form)

if __name__ == ‘__main__‘:
    app.run()

app.py
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <title>Title</title>
</head>
<body>
<h1>用户注册</h1>
<form method="post" novalidate style="padding:0  50px">
    {% for item in form %}
    <p>{{item.label}}: {{item}} {{item.errors[0] }}</p>
    {% endfor %}
    <input type="submit" value="提交">
</form>
</body>
</html>

register.html

3. meta

 

#!/usr/bin/env python
# -*- coding:utf-8 -*-
from flask import Flask, render_template, request, redirect, session
from wtforms import Form
from wtforms.csrf.core import CSRF
from wtforms.fields import core
from wtforms.fields import html5
from wtforms.fields import simple
from wtforms import validators
from wtforms import widgets
from hashlib import md5

app = Flask(__name__, template_folder=‘templates‘)
app.debug = True

class MyCSRF(CSRF):
    """
    Generate a CSRF token based on the user‘s IP. I am probably not very
    secure, so don‘t use me.
    """

    def setup_form(self, form):
        self.csrf_context = form.meta.csrf_context()
        self.csrf_secret = form.meta.csrf_secret
        return super(MyCSRF, self).setup_form(form)

    def generate_csrf_token(self, csrf_token):
        gid = self.csrf_secret + self.csrf_context
        token = md5(gid.encode(‘utf-8‘)).hexdigest()
        return token

    def validate_csrf_token(self, form, field):
        print(field.data, field.current_token)
        if field.data != field.current_token:
            raise ValueError(‘Invalid CSRF‘)

class TestForm(Form):
    name = html5.EmailField(label=‘用户名‘)
    pwd = simple.StringField(label=‘密码‘)

    class Meta:
        # -- CSRF
        # 是否自动生成CSRF标签
        csrf = True
        # 生成CSRF标签name
        csrf_field_name = ‘csrf_token‘

        # 自动生成标签的值,加密用的csrf_secret
        csrf_secret = ‘xxxxxx‘
        # 自动生成标签的值,加密用的csrf_context
        csrf_context = lambda x: request.url
        # 生成和比较csrf标签
        csrf_class = MyCSRF

        # -- i18n
        # 是否支持本地化
        # locales = False
        locales = (‘zh‘, ‘en‘)
        # 是否对本地化进行缓存
        cache_translations = True
        # 保存本地化缓存信息的字段
        translations_cache = {}

@app.route(‘/index/‘, methods=[‘GET‘, ‘POST‘])
def index():
    if request.method == ‘GET‘:
        form = TestForm()
    else:
        form = TestForm(formdata=request.form)
        if form.validate():
            print(form)
    return render_template(‘index.html‘, form=form)

if __name__ == ‘__main__‘:
    app.run()

其他:

1. metaclass

class MyType(type):
    def __init__(self, *args, **kwargs):
        print(‘MyType创建类‘,self)
        super(MyType, self).__init__(*args, **kwargs)

    def __call__(self, *args, **kwargs):
        obj = super(MyType, self).__call__(*args, **kwargs)
        print(‘类创建对象‘, self, obj)
        return obj

class Foo(object,metaclass=MyType):
    user = ‘wupeiqi‘
    age = 18

obj = Foo()
class MyType(type):
    def __init__(self, *args, **kwargs):
        super(MyType, self).__init__(*args, **kwargs)

    def __call__(cls, *args, **kwargs):
        v = dir(cls)
        obj = super(MyType, cls).__call__(*args, **kwargs)
        return obj

class Foo(MyType(‘MyType‘, (object,), {})):
    user = ‘wupeiqi‘
    age = 18

obj = Foo()
class MyType(type):
    def __init__(self, *args, **kwargs):
        super(MyType, self).__init__(*args, **kwargs)

    def __call__(cls, *args, **kwargs):
        v = dir(cls)
        obj = super(MyType, cls).__call__(*args, **kwargs)
        return obj

def with_metaclass(arg,base):
    return MyType(‘MyType‘, (base,), {})

class Foo(with_metaclass(MyType,object)):
    user = ‘wupeiqi‘
    age = 18

obj = Foo()

2. 实例化流程分析

# 源码流程
    1. 执行type的 __call__ 方法,读取字段到静态字段 cls._unbound_fields 中; meta类读取到cls._wtforms_meta中
    2. 执行构造方法

        a. 循环cls._unbound_fields中的字段,并执行字段的bind方法,然后将返回值添加到 self._fields[name] 中。
            即:
                _fields = {
                    name: wtforms.fields.core.StringField(),
                }

            PS:由于字段中的__new__方法,实例化时:name = simple.StringField(label=‘用户名‘),创建的是UnboundField(cls, *args, **kwargs),当执行完bind之后,才变成执行 wtforms.fields.core.StringField()

        b. 循环_fields,为对象设置属性
            for name, field in iteritems(self._fields):
                # Set all the fields to attributes so that they obscure the class
                # attributes with the same names.
                setattr(self, name, field)
        c. 执行process,为字段设置默认值:self.process(formdata, obj, data=data, **kwargs)
            优先级:obj,data,formdata;

            再循环执行每个字段的process方法,为每个字段设置值:
            for name, field, in iteritems(self._fields):
                if obj is not None and hasattr(obj, name):
                    field.process(formdata, getattr(obj, name))
                elif name in kwargs:
                    field.process(formdata, kwargs[name])
                else:
                    field.process(formdata)

            执行每个字段的process方法,为字段的data和字段的raw_data赋值
            def process(self, formdata, data=unset_value):
                self.process_errors = []
                if data is unset_value:
                    try:
                        data = self.default()
                    except TypeError:
                        data = self.default

                self.object_data = data

                try:
                    self.process_data(data)
                except ValueError as e:
                    self.process_errors.append(e.args[0])

                if formdata:
                    try:
                        if self.name in formdata:
                            self.raw_data = formdata.getlist(self.name)
                        else:
                            self.raw_data = []
                        self.process_formdata(self.raw_data)
                    except ValueError as e:
                        self.process_errors.append(e.args[0])

                try:
                    for filter in self.filters:
                        self.data = filter(self.data)
                except ValueError as e:
                    self.process_errors.append(e.args[0])

        d. 页面上执行print(form.name) 时,打印标签

            因为执行了:
                字段的 __str__ 方法
                字符的 __call__ 方法
                self.meta.render_field(self, kwargs)
                    def render_field(self, field, render_kw):
                        other_kw = getattr(field, ‘render_kw‘, None)
                        if other_kw is not None:
                            render_kw = dict(other_kw, **render_kw)
                        return field.widget(field, **render_kw)
                执行字段的插件对象的 __call__ 方法,返回标签字符串

3. 验证流程分析

a. 执行form的validate方法,获取钩子方法
            def validate(self):
                extra = {}
                for name in self._fields:
                    inline = getattr(self.__class__, ‘validate_%s‘ % name, None)
                    if inline is not None:
                        extra[name] = [inline]

                return super(Form, self).validate(extra)
        b. 循环每一个字段,执行字段的 validate 方法进行校验(参数传递了钩子函数)
            def validate(self, extra_validators=None):
                self._errors = None
                success = True
                for name, field in iteritems(self._fields):
                    if extra_validators is not None and name in extra_validators:
                        extra = extra_validators[name]
                    else:
                        extra = tuple()
                    if not field.validate(self, extra):
                        success = False
                return success
        c. 每个字段进行验证时候
            字段的pre_validate 【预留的扩展】
            字段的_run_validation_chain,对正则和字段的钩子函数进行校验
            字段的post_validate【预留的扩展】

文章转载于:http://www.cnblogs.com/wupeiqi/articles/8202357.html

 

 

原文地址:https://www.cnblogs.com/supery007/p/8270109.html

时间: 2024-11-06 13:28:27

Python Flask wtfroms组件的相关文章

python Flask EasyUI使用说明

0.前言 本文说明如何在flask框架下使用前端组件EasyUI.在flask框架中链接css文件,js脚本和图片等静态文件的方式和其他web服务器存在差别.在flask框架中这些静态文件一般存放与static文件夹中,并通过url_for函数指定static中相对位置和文件名. [代码仓库] 代码仓库位于bitbucket--flask-easyui,请使用支持HTML5的浏览器打开链接. [相关博文] [1]python 扩展库安装 使用第三方镜像源 [2]python Flask 学前班

CentOS6.7+Python+Flask开发框架部署

系统环境: CentOS6.7的Base service版本. 软件包提供: 官方下载 软件包版本: Readline-devel: yum安装 openssl and openssl-devel: yum安装 Python: Python-2.7.6.tar.xz ipython: ipython-1.2.1.tar.gz Setuptools: setuptools-20.3.1.tar.gz pip: pip-8.1.1.tar.gz virtualenv: virtualenv-15.0

windows下python+flask环境配置详细图文教程

本帖是本人在安装配置python和flask环境时所用到的资源下载及相关的教程进行了整理罗列,来方便后面的人员,省去搜索的时间.如果你在安装配置是存在问题可留言给我. 首先罗列一下python+flask环境所用的一些程序组件的下载地址: 1.python语言环境: http://www.python.org/download/ . 2.setuptools 组件: https://pypi.python.org/pypi/setuptools/0.9.6 . 3.pip 组件: https:/

Python Flask+Bootstrap+Jinja2 构建轻量级企业内部系统平台框架

1.最近公司运维需求,学习python flask 满足环境治理系统的开发;入门如下;    环境类型:      Python 2.7.5         获取地址:https://www.python.org/downloads/       Flask  1.0.2               pip 安装使用模快如下:           flask==1.0.2           request==1.0.2           Jinja2==2.10           Flas

Python Flask 狗书电子版pdf

Python Flask 狗书电子版pdf 链接:https://pan.baidu.com/s/197PUp5jXLnDRnkpr3VfHJw 提取码:87xx 内容简介 · · · · · · 本书不仅适合初级Web开发人员学习阅读,更是Python程序员用来学习高级Web开发技术的优秀参考书. 学习Flask应用的基本结构,编写示例应用: 使用必备的组件,包括模板.数据库.Web表单和电子邮件支持: 使用包和模块构建可伸缩的大型应用: 实现用户认证.角色和个人资料: 在博客网站中重用模板.

python flask model 序列化

class DictSerializable(object): def as_dict(self,*args): result = OrderedDict() keys=args or self.__mapper__.c.keys() for key in keys: if hasattr(self,key): obj=getattr(self, key) if isinstance(obj,basestring): value=obj elif isinstance(obj,int) or i

Python.Flask.0

1. 吐槽 Python Web 框架 Flask https://blog.tonyseek.com/post/discuss-about-flask-framework/ 2. How To Structure Large Flask Applications https://www.digitalocean.com/community/tutorials/how-to-structure-large-flask-applications Python.Flask.0,布布扣,bubuko.

python flask api

使用python的Flask实现一个RESTful API服务器端[翻译] 用python+flask自己制作api(教程附源码)

在MAC OS 下配置python + Flask ,并支持pyCharm编辑器

原创咯- flask是一个micro framework ,伸缩性很强.可以部署到openshift 的PAAS里.这个框架上手非常快.喜欢的可以试试. 若实在MAC里,python已经默认安装了.10.9的系统安装的是2.7.5的版本.所以我们这里就不详细介绍python的安装啦 1. 首先安装  vurtualenv 这是一个虚拟环境,virtualenv 允许多个版本的 Python 同时存在,对应不同的项目. 它实际上并没有安装独立的 Python 副本,但是它确实提供了一种巧妙的方式来