feat: Add password change feature
This commit is contained in:
parent
e198466d8a
commit
cddefe5de4
@ -35,7 +35,9 @@ class Post(models.Model):
|
|||||||
)
|
)
|
||||||
price = models.IntegerField()
|
price = models.IntegerField()
|
||||||
text = models.TextField()
|
text = models.TextField()
|
||||||
author = models.ForeignKey(User, on_delete=models.SET_NULL, null=True)
|
author = models.ForeignKey(
|
||||||
|
User, on_delete=models.SET_NULL, null=True, related_name="posts"
|
||||||
|
)
|
||||||
status = models.CharField(
|
status = models.CharField(
|
||||||
max_length=1, choices=STATUS_CHOICES, default="s"
|
max_length=1, choices=STATUS_CHOICES, default="s"
|
||||||
)
|
)
|
||||||
|
@ -1,4 +1,6 @@
|
|||||||
from rest_framework.serializers import ModelSerializer
|
from rest_framework.serializers import ModelSerializer, Serializer
|
||||||
|
from rest_framework import serializers
|
||||||
|
from django.contrib.auth import password_validation
|
||||||
|
|
||||||
from .models import User
|
from .models import User
|
||||||
|
|
||||||
@ -32,3 +34,12 @@ class UserCreateSerializer(ModelSerializer):
|
|||||||
nickname=validated_data["nickname"],
|
nickname=validated_data["nickname"],
|
||||||
)
|
)
|
||||||
return user
|
return user
|
||||||
|
|
||||||
|
|
||||||
|
class PasswordSerializer(Serializer):
|
||||||
|
oldPassword = serializers.CharField(required=True)
|
||||||
|
newPassword = serializers.CharField(required=True)
|
||||||
|
|
||||||
|
def validate_newPassword(self, value):
|
||||||
|
password_validation.validate_password(value)
|
||||||
|
return value
|
||||||
|
@ -9,7 +9,11 @@ from core.mixins import ActionBasedMixin
|
|||||||
|
|
||||||
from market.serializers import PostSerializer
|
from market.serializers import PostSerializer
|
||||||
from .models import User
|
from .models import User
|
||||||
from .serializers import UserSerializer, UserCreateSerializer
|
from .serializers import (
|
||||||
|
UserSerializer,
|
||||||
|
UserCreateSerializer,
|
||||||
|
PasswordSerializer,
|
||||||
|
)
|
||||||
|
|
||||||
|
|
||||||
class UserViewset(ActionBasedMixin, ModelViewSet):
|
class UserViewset(ActionBasedMixin, ModelViewSet):
|
||||||
@ -18,6 +22,7 @@ class UserViewset(ActionBasedMixin, ModelViewSet):
|
|||||||
serializer_class_map = {
|
serializer_class_map = {
|
||||||
"create": UserCreateSerializer,
|
"create": UserCreateSerializer,
|
||||||
"posts": PostSerializer,
|
"posts": PostSerializer,
|
||||||
|
"password": PasswordSerializer,
|
||||||
}
|
}
|
||||||
permission_classes = [IsAdminUser]
|
permission_classes = [IsAdminUser]
|
||||||
permission_classes_map = {
|
permission_classes_map = {
|
||||||
@ -26,11 +31,12 @@ class UserViewset(ActionBasedMixin, ModelViewSet):
|
|||||||
"logout": [IsAuthenticated],
|
"logout": [IsAuthenticated],
|
||||||
"me": [IsAuthenticated],
|
"me": [IsAuthenticated],
|
||||||
"posts": [IsAuthenticated],
|
"posts": [IsAuthenticated],
|
||||||
|
"password": [IsAuthenticated],
|
||||||
}
|
}
|
||||||
|
|
||||||
@action(detail=True, methods=["GET"])
|
@action(detail=False, methods=["GET"])
|
||||||
def posts(self, request, pk):
|
def posts(self, request):
|
||||||
user = self.get_object()
|
user = request.user
|
||||||
queryset = user.posts.all()
|
queryset = user.posts.all()
|
||||||
|
|
||||||
page = self.paginate_queryset(queryset)
|
page = self.paginate_queryset(queryset)
|
||||||
@ -41,6 +47,23 @@ class UserViewset(ActionBasedMixin, ModelViewSet):
|
|||||||
serializer = self.get_serializer(queryset, many=True)
|
serializer = self.get_serializer(queryset, many=True)
|
||||||
return Response(serializer.data)
|
return Response(serializer.data)
|
||||||
|
|
||||||
|
@action(detail=False, methods=["PATCH"])
|
||||||
|
def password(self, request):
|
||||||
|
user = request.user
|
||||||
|
if user.is_anonymous:
|
||||||
|
return Response(status=401)
|
||||||
|
oldPassword = request.data["oldPassword"]
|
||||||
|
newPassword = request.data["newPassword"]
|
||||||
|
if not user.check_password(oldPassword):
|
||||||
|
return Response(status=400, data={"msg": "현재 비밀번호가 일치하지 않습니다"})
|
||||||
|
serializer = self.get_serializer(data=request.data)
|
||||||
|
if not serializer.is_valid():
|
||||||
|
msg = " ".join(serializer.errors["newPassword"])
|
||||||
|
return Response(status=400, data={"msg": msg})
|
||||||
|
user.set_password(newPassword)
|
||||||
|
user.save()
|
||||||
|
return Response(status=204)
|
||||||
|
|
||||||
def create(self, request, *args, **kwargs):
|
def create(self, request, *args, **kwargs):
|
||||||
serializer = UserCreateSerializer(data=request.data)
|
serializer = UserCreateSerializer(data=request.data)
|
||||||
serializer.is_valid(raise_exception=True)
|
serializer.is_valid(raise_exception=True)
|
||||||
|
Loading…
Reference in New Issue
Block a user