flask自己写登录验证和角色验证

**Flask 登录验证和角色验证**

在 Flask 应用中，登录验证和角色验证是非常重要的功能。下面我们将一步步地实现这些功能。

###1. 安装必要的库首先，我们需要安装 `flask` 和 `flask-login` 库。

bashpip install flask flask-login

from flask import Flask, render_template, request, redirect, url_forfrom flask_login import LoginManager, UserMixin, login_user, logout_user, current_userapp = Flask(__name__)
app.config['SECRET_KEY'] = 'secret_key'

# 配置登录管理器login_manager = LoginManager()
login_manager.init_app(app)

class User(UserMixin):
 def __init__(self, id, username, password, role):
 self.id = id self.username = username self.password = password self.role = role @classmethod def get(cls, user_id):
 # 从数据库中获取用户信息 pass def is_authenticated(self):
 return True def is_active(self):
 return True def is_anonymous(self):
 return False def get_id(self):
 return str(self.id)

@login_manager.user_loaderdef load_user(user_id):
 user = User.get(int(user_id))
 if user:
 return user else:
 return None@app.route('/login', methods=['GET', 'POST'])
def login():
 if request.method == 'POST':
 username = request.form['username']
 password = request.form['password']

 # 从数据库中获取用户信息 user = User.get(username)

 if user and user.password == password:
 login_user(user)
 return redirect(url_for('index'))
 else:
 return render_template('login.html', error='Invalid username or password')

 return render_template('login.html')

def role_required(role):
 def decorator(func):
 @wraps(func)
 def wrapper(*args, **kwargs):
 if current_user.role == role:
 return func(*args, **kwargs)
 else:
 return redirect(url_for('index'))
 return wrapper return decorator@app.route('/admin')
@role_required('admin')
def admin():
 return render_template('admin.html')

@app.route('/user')
@role_required('user')
def user():
 return render_template('user.html')

@app.route('/logout', methods=['GET'])
def logout():
 logout_user()
 return redirect(url_for('index'))