今日内容概要
- 短信注册接口
- 登录前端
- 注册前端
- redis介绍
- python操作redis
- redis连接池
今日内容详细
短信发送接口,如何防止被人解析出地址后恶意使用?
1. IP 频率限制
2. 手机号 频率限制
3. 先发送一个请求:从后端获取一个随机字符串,存在后端缓存
然后发送短信,携带这个随机字符串,比较以下这个随机字符串是不是自己给的
4. 前端发送请求携带加密串(当前时间),前端加密(某个密钥)--->来到后端,同样的密钥解
--->取出当前时间,如果超过一分钟,就禁止调用
短信注册接口
请求地址:http://127.0.0.1:8000/api/v1/userinfo/user/register/
请求方式:post
请求参数:{mobile:'xxx', code:'xxxx', password:'xxx'}
user/views.py
class UserView(ViewSet):
@action(methods=['POST'], detail=False)
def register(self, request):
ser = UserRegisterSerializer(data=request.data)
ser.is_valid(raise_exception=True)
ser.save()
return APIResponse(msg='注册成功')
# 后期要写注册并且登录的接口
user/serializer.py
class UserRegisterSerializer(serializers.ModelSerializer): # 只用来做数据校验和反序列化
code = serializers.CharField(max_length=4, min_length=4)
class Meta:
model = UserInfo
fields = ['mobile', 'code', 'password'] # mobile就是唯一的,校验数据库是否唯一,映射过来就有了
def validate(self, attrs):
# 1 验证code是否正确
mobile = attrs.get('mobile')
code = attrs.get('code')
old_code = cache.get('sms_code_%s' % mobile)
if not (old_code == code or code == '8888'):
raise APIException('验证码错误')
# 2 入库前的准备:code剔除,username设置为手机号
attrs['username'] = mobile
attrs.pop('code')
return attrs
# 3 保存正常不用写,新增Userinfo,密码是加密的---》重写create方法
def create(self, validated_data): # mobile,username,password
user = UserInfo.objects.create_user(**validated_data)
return user
登录前端
Login.vue
<template>
<div class="login">
<div class="box">
<i class="el-icon-close" @click="close_login"></i>
<div class="content">
<div class="nav">
<span :class="{active: login_method === 'is_pwd'}"
@click="change_login_method('is_pwd')">密码登录</span>
<span :class="{active: login_method === 'is_sms'}"
@click="change_login_method('is_sms')">短信登录</span>
</div>
<el-form v-if="login_method === 'is_pwd'">
<el-input
placeholder="用户名/手机号/邮箱"
prefix-icon="el-icon-user"
v-model="username"
clearable>
</el-input>
<el-input
placeholder="密码"
prefix-icon="el-icon-key"
v-model="password"
clearable
show-password>
</el-input>
<el-button type="primary" @click="handleMulLogin">登录</el-button>
</el-form>
<el-form v-if="login_method === 'is_sms'">
<el-input
placeholder="手机号"
prefix-icon="el-icon-phone-outline"
v-model="mobile"
clearable
@blur="check_mobile">
</el-input>
<el-input
placeholder="验证码"
prefix-icon="el-icon-chat-line-round"
v-model="sms"
clearable>
<template slot="append">
<span class="sms" @click="send_sms">{{ sms_interval }}</span>
</template>
</el-input>
<el-button type="primary" @click="handleSmsLogin">登录</el-button>
</el-form>
<div class="foot">
<span @click="go_register">立即注册</span>
</div>
</div>
</div>
</div>
</template>
<script>
export default {
name: "Login",
data() {
return {
username: '',
password: '',
mobile: '',
sms: '',
login_method: 'is_pwd',
sms_interval: '获取验证码',
is_send: false, // 是true才可以发送短信
}
},
methods: {
close_login() {
this.$emit('close')
},
go_register() {
this.$emit('go')
},
change_login_method(method) {
this.login_method = method;
},
check_mobile() {
// 手机号如果没填,就直接返回
if (!this.mobile) return;
if (!this.mobile.match(/^1[3-9][0-9]{9}$/)) {
this.$message({
message: '手机号有误',
type: 'warning',
duration: 1000,
onClose: () => {
this.mobile = '';
}
});
return false;
}
//后端校验一下是否注册了
this.$axios.get(this.$settings.BASE_URL + 'userinfo/user/mobile/?mobile=' + this.mobile).then(res => {
if (res.data.code != 100) {
this.mobile = ''
this.$message({
message: '该手机号没注册,请先注册',
type: 'error'
});
return // 函数结束掉
}
})
this.is_send = true; // 可以发送短信了
},
send_sms() {
//如果is_send不是true,是不能发短信的
if (!this.is_send) return;
this.is_send = false;
let sms_interval_time = 60;
this.sms_interval = "发送中...";
let timer = setInterval(() => {
if (sms_interval_time <= 1) {
clearInterval(timer);
this.sms_interval = "获取验证码";
this.is_send = true; // 重新回复点击发送功能的条件
} else {
sms_interval_time -= 1;
this.sms_interval = `${sms_interval_time}秒后再发`;
}
}, 1000);
// 发送短信
this.$axios.get(this.$settings.BASE_URL + 'userinfo/user/send_sms/?mobile=' + this.mobile).then(
res => {
this.$message({
message: res.data.msg,
type: 'success'
});
}
)
},
// 多方式登录方法
handleMulLogin() {
if (this.username && this.password) {
this.$axios.post(this.$settings.BASE_URL + 'userinfo/user/mul_login/', {
username: this.username,
password: this.password
}).then(res => {
console.log(res.data)
if (res.data.code == 100) {
// 用户名,token,头像,存到本地存储
this.$cookies.set('token', res.data.token)
this.$cookies.set('username', res.data.username)
this.$cookies.set('icon', res.data.icon)
// 销毁调登录模态框
this.$emit('close')
} else {
this.$message({
message: res.data.msg,
type: 'error'
});
}
})
} else {
this.$message({
message: '用户名或密码不能为空',
type: 'warning'
});
}
},
// 短信登录
handleSmsLogin() {
if (this.mobile && this.sms) {
this.$axios.post(this.$settings.BASE_URL + 'userinfo/user/mobile_login/', {
mobile: this.mobile,
code: this.sms
}).then(res => {
if (res.data.code == 100) {
// 用户名,token,头像,存到本地存储
this.$cookies.set('token', res.data.token)
this.$cookies.set('username', res.data.username)
this.$cookies.set('icon', res.data.icon)
// 销毁调登录模态框
this.$emit('close')
} else {
this.$message({
message: res.data.msg,
type: 'error'
});
}
})
}
}
}
}
</script>
<style scoped>
.login {
width: 100vw;
height: 100vh;
position: fixed;
top: 0;
left: 0;
z-index: 10;
background-color: rgba(0, 0, 0, 0.3);
}
.box {
width: 400px;
height: 420px;
background-color: white;
border-radius: 10px;
position: relative;
top: calc(50vh - 210px);
left: calc(50vw - 200px);
}
.el-icon-close {
position: absolute;
font-weight: bold;
font-size: 20px;
top: 10px;
right: 10px;
cursor: pointer;
}
.el-icon-close:hover {
color: darkred;
}
.content {
position: absolute;
top: 40px;
width: 280px;
left: 60px;
}
.nav {
font-size: 20px;
height: 38px;
border-bottom: 2px solid darkgrey;
}
.nav > span {
margin: 0 20px 0 35px;
color: darkgrey;
user-select: none;
cursor: pointer;
padding-bottom: 10px;
border-bottom: 2px solid darkgrey;
}
.nav > span.active {
color: black;
border-bottom: 3px solid black;
padding-bottom: 9px;
}
.el-input, .el-button {
margin-top: 40px;
}
.el-button {
width: 100%;
font-size: 18px;
}
.foot > span {
float: right;
margin-top: 20px;
color: orange;
cursor: pointer;
}
.sms {
color: orange;
cursor: pointer;
display: inline-block;
width: 70px;
text-align: center;
user-select: none;
}
</style>
注册前端
Register.vue
<template>
<div class="register">
<div class="box">
<i class="el-icon-close" @click="close_register"></i>
<div class="content">
<div class="nav">
<span class="active">新用户注册</span>
</div>
<el-form>
<el-input
placeholder="手机号"
prefix-icon="el-icon-phone-outline"
v-model="mobile"
clearable
@blur="check_mobile">
</el-input>
<el-input
placeholder="密码"
prefix-icon="el-icon-key"
v-model="password"
clearable
show-password>
</el-input>
<el-input
placeholder="验证码"
prefix-icon="el-icon-chat-line-round"
v-model="sms"
clearable>
<template slot="append">
<span class="sms" @click="send_sms">{{ sms_interval }}</span>
</template>
</el-input>
<el-button type="primary" @click="handleRegister">注册</el-button>
</el-form>
<div class="foot">
<span @click="go_login">立即登录</span>
</div>
</div>
</div>
</div>
</template>
<script>
export default {
name: "Register",
data() {
return {
mobile: '',
password: '',
sms: '',
sms_interval: '获取验证码',
is_send: false,
}
},
methods: {
close_register() {
this.$emit('close', false)
},
go_login() {
this.$emit('go')
},
check_mobile() {
if (!this.mobile) return;
if (!this.mobile.match(/^1[3-9][0-9]{9}$/)) {
this.$message({
message: '手机号有误',
type: 'warning',
duration: 1000,
onClose: () => {
this.mobile = '';
}
});
return false;
}
// 判断手机号是否存在
this.$axios.get(this.$settings.BASE_URL + 'userinfo/user/mobile/?mobile=' + this.mobile).then(res => {
if (res.data.code == 100) {
this.mobile = ''
this.$message({
message: '该手机号已经,请直接登录',
type: 'error'
});
return // 函数结束掉
}
})
this.is_send = true;
},
send_sms() {
if (!this.is_send) return;
this.is_send = false;
let sms_interval_time = 60;
this.sms_interval = "发送中...";
let timer = setInterval(() => {
if (sms_interval_time <= 1) {
clearInterval(timer);
this.sms_interval = "获取验证码";
this.is_send = true; // 重新回复点击发送功能的条件
} else {
sms_interval_time -= 1;
this.sms_interval = `${sms_interval_time}秒后再发`;
}
}, 1000);
// 发送短信
this.$axios.get(this.$settings.BASE_URL + 'userinfo/user/send_sms/?mobile=' + this.mobile).then(
res => {
this.$message({
message: res.data.msg,
type: 'success'
});
}
)
},
handleRegister() {
if (this.mobile && this.sms && this.password) {
this.$axios.post(this.$settings.BASE_URL + 'userinfo/user/register/', {
mobile: this.mobile,
code: this.sms,
password: this.password
}).then(res => {
if (res.data.code == '100') {
// 跳转到登录
this.$emit('go')
} else {
this.$message({
message: res.data.msg,
type: 'error'
});
}
})
} else {
this.$message({
message: '不能有空',
type: 'error'
});
}
}
}
}
</script>
<style scoped>
.register {
width: 100vw;
height: 100vh;
position: fixed;
top: 0;
left: 0;
z-index: 10;
background-color: rgba(0, 0, 0, 0.3);
}
.box {
width: 400px;
height: 480px;
background-color: white;
border-radius: 10px;
position: relative;
top: calc(50vh - 240px);
left: calc(50vw - 200px);
}
.el-icon-close {
position: absolute;
font-weight: bold;
font-size: 20px;
top: 10px;
right: 10px;
cursor: pointer;
}
.el-icon-close:hover {
color: darkred;
}
.content {
position: absolute;
top: 40px;
width: 280px;
left: 60px;
}
.nav {
font-size: 20px;
height: 38px;
border-bottom: 2px solid darkgrey;
}
.nav > span {
margin-left: 90px;
color: darkgrey;
user-select: none;
cursor: pointer;
padding-bottom: 10px;
border-bottom: 2px solid darkgrey;
}
.nav > span.active {
color: black;
border-bottom: 3px solid black;
padding-bottom: 9px;
}
.el-input, .el-button {
margin-top: 40px;
}
.el-button {
width: 100%;
font-size: 18px;
}
.foot > span {
float: right;
margin-top: 20px;
color: orange;
cursor: pointer;
}
.sms {
color: orange;
cursor: pointer;
display: inline-block;
width: 70px;
text-align: center;
user-select: none;
}
</style>
Header.vue
<template>
<div class="header">
<div class="slogan">
<p>老男孩IT教育 | 帮助有志向的年轻人通过努力学习获得体面的工作和生活</p>
</div>
<div class="nav">
<ul class="left-part">
<li class="logo">
<router-link to="/">
<img src="../assets/img/head-logo.svg" alt="">
</router-link>
</li>
<li class="ele">
<span @click="goPage('/free-course')" :class="{active: url_path === '/free-course'}">免费课</span>
</li>
<li class="ele">
<span @click="goPage('/actual-course')" :class="{active: url_path === '/actual-course'}">实战课</span>
</li>
<li class="ele">
<span @click="goPage('/light-course')" :class="{active: url_path === '/light-course'}">轻课</span>
</li>
</ul>
<div class="right-part">
<div v-if="!username">
<span @click="put_login">登录</span>
<span class="line">|</span>
<span @click="put_register">注册</span>
</div>
<div v-else>
<span><img :src="this.$cookies.get('icon')" alt="..." height="30px" width="30px"></span>
<span>{{ username }}</span>
<span class="line">|</span>
<span @click="logout">注销</span>
</div>
<Login v-if="is_login" @close="close_login" @go="put_register"></Login>
<Register v-if="is_register" @close="close_register" @go="put_login"></Register>
</div>
</div>
</div>
</template>
<script>
import Login from "@/components/Login";
import Register from "@/components/Register";
export default {
name: "Header",
data() {
return {
url_path: sessionStorage.url_path || '/',
is_login: false,
is_register: false,
username: '',
}
},
methods: {
goPage(url_path) {
// 已经是当前路由就没有必要重新跳转
if (this.url_path !== url_path) {
// 传入的参数,如果不等于当前路径,就跳转
this.$router.push(url_path)
}
sessionStorage.url_path = url_path;
},
put_login() {
this.is_login = true
this.is_register = false
},
put_register() {
this.is_register = true
this.is_login = false
},
close_login() {
this.is_login = false
this.username = this.$cookies.get('username')
},
close_register() {
this.is_register = false
},
// 退出功能:正常只需要本地删除token即可,不需要跟后端交互,如果有需求,需要发请求,统计用户退出时间。。。
logout() {
this.$cookies.remove('token')
this.$cookies.remove('username')
this.$cookies.remove('icon')
this.username = ''
},
},
created() {
sessionStorage.url_path = this.$route.path
this.url_path = this.$route.path
//取出cookie中得token和username
this.username = this.$cookies.get('username')
},
components: {
Login, Register
}
}
</script>
<style scoped>
.header {
background-color: white;
box-shadow: 0 0 5px 0 #aaa;
}
.header:after {
content: "";
display: block;
clear: both;
}
.slogan {
background-color: #eee;
height: 40px;
}
.slogan p {
width: 1200px;
margin: 0 auto;
color: #aaa;
font-size: 13px;
line-height: 40px;
}
.nav {
background-color: white;
user-select: none;
width: 1200px;
margin: 0 auto;
}
.nav ul {
padding: 15px 0;
float: left;
}
.nav ul:after {
clear: both;
content: '';
display: block;
}
.nav ul li {
float: left;
}
.logo {
margin-right: 20px;
}
.ele {
margin: 0 20px;
}
.ele span {
display: block;
font: 15px/36px '微软雅黑';
border-bottom: 2px solid transparent;
cursor: pointer;
}
.ele span:hover {
border-bottom-color: orange;
}
.ele span.active {
color: orange;
border-bottom-color: orange;
}
.right-part {
float: right;
}
.right-part .line {
margin: 0 10px;
}
.right-part span {
line-height: 68px;
cursor: pointer;
}
</style>
redis介绍
redis介绍:
1)是一个从c,s架构的软件(用c语言写的,初级版本代码只有1w多行 7.x,公司 5.x,4.x多)
2)非关系型数据库【存数据的地方】,nosql数据库:指非关系型数据库:1不限于SQL 2没有sql
3)内存存储,速度非常快,可以持久化【数据从内存同步到硬盘】
4)数据类型丰富【5大数据类型:字符串,列表,哈希(字典),集合,有序集合】
5)key-value形式存储【根本没有表的结构,相当于咱们的字典】
redis为什么这么快?
-1 高性能的网络模型:IO多路复用的epoll模型,承载住非常高的并发量
-2 纯内存操作,避免了很多io
-3 单线程架构,避免了线程间切换的消耗
-6.x之前:单线程,单进程
-6.x以后,多线程架构,数据操作还是使用单线程,别的线程做数据持久化,其他操作
redis 应用场景(了解)
1 当缓存数据库使用,接口缓存,提高接口响应速度
-请求进到视图---》去数据查询[多表查询,去硬盘取数据:速度慢]----》转成json格式字符串---》返回给前端
-请求进到视图---》去redis[内存]----》取json格式字符串---》返回给前端
2 做计数器:单线程,不存在并发安全问题
-统计网站访问量
-个人站点浏览量
-文章阅读量
3 去重操作:集合
4 排行榜:有序集合
-阅读排行榜
-游戏金币排行榜
5 布隆过滤器
6 抽奖
7 消息队列
redis安装
开源软件:使用c语言写的---【编译型语言,在操作系统运行,要编译成可执行文件,由于采用了IO多路复用的epoll模型,所以它不支持windows,只有linux操作系统支持epoll】
# 微软官方:改了,编译成可执行的安装包,下载一路下一步安装
-版本没有最新
# 官网:https://redis.io/
-下载完是源代码:c语言源码 :https://redis.io/download/#redis-stack-downloads
-最稳定:6.x
-最新7.x
# 中文网:http://redis.cn/download.html
-上面最新只到5.x
# win版本下载地址
最新5.x版本 https://github.com/tporadowski/redis/releases/
最新3.x版本 https://github.com/microsoftarchive/redis/releases
下载完一路下一步即可,具体可参照:https://www.cnblogs.com/liuqingzheng/p/9831331.html
# win装完会有redis服务
-启动服务,手动停止
-客户端链接:redis-cli -h 127.0.0.1 -p 6379
-简单命令:
set name lqz
get name
ping
-停掉服务:
去win服务点关闭
客户端关闭:shutdown
#mysql 服务端
#mysql客户端
-navicate
-命令窗口cmd
-python操作
# redis 服务器端
# redis 客户端
-redis-cli
-图形化工具:redis-destop-management
-python操作
python操作redis
python 写脚本,操作redis,本质python代码就是redis的客户端
# pip3 install redis
from redis import Redis
conn = Redis(host='localhost', # 连接本地/远端
port=6379 # 端口号
)
# conn.set('name', 'wjl')
print(conn.get('name'))
conn.close()
redis连接池
POOL.py
import redis
# 创建一个连接池,保证它是单例,全局只有一个pool对象:使用模块导入方式实现单例
pool = redis.ConnectionPool(max_connections=200, host='127.0.0.1', port=6379)
redis_pool.py
from redis import Redis
from threading import Thread
### 直接链接
def get_name_from_redis():
conn = Redis(host="localhost", port=6379)
print(conn.get('name'))
conn.close()
for i in range(100):
t=Thread(target=get_name_from_redis)
t.start()
import time
time.sleep(10)
### 使用连接池链接
import redis
from POOL import pool
def get_name_from_redis():
conn = redis.Redis(connection_pool=pool) #每执行一次会从池中取一个链接,如果没有,等待
res=conn.get('name')
print(res)
conn.close()
for i in range(100):
t=Thread(target=get_name_from_redis)
t.start()
import time
time.sleep(10)
标签:sms,项目,mobile,res,redis,luffy,message,data
From: https://www.cnblogs.com/wwjjll/p/16890056.html