Notice: This page requires JavaScript to function properly.
Please enable JavaScript in your browser settings or update your browser.Impara Login Endpoint | Authentication with JWT
Professional Web API with Flask
course content

Contenuti del Corso

Professional Web API with Flask

Professional Web API with Flask

1. Introduction to the Course
Course OutlineAbout APIAbout REST APIProject DescriptionProject InitializationEnvironment Configuration and Dependency ManagementEstablish SSH Connection to GitHub
2. Database and Models
SQLAlchemy Set UpCreate ModelsMany-to-One RelationshipOne-to-One RelationshipMany-to-Many Relationship
3. Flask-Smorest and Schemas
Introduction to Flask-SmorestIntroduction to MarshmallowJSON ExplanationSchema Handling with Marshmallow
4. Endpoints with Blueprints and MethodView
Blueprints and MethodView OverviewStart with Blueprints and MethodViewsFirst Endpoint, Flask-Migration and SQLite StudioPostman and InsomniaTeam EndpointsUser and Player EndpointsSwagger UI
5. Authentication with JWT
What is JWT?Flask-JWT-Extended Set UpUser RegistrationLogin EndpointJWT RequiredPermissionsLogout EndpointTesting New Endpoints
6. Deployment
Enhancing Your AppLast Git Push

book
Login Endpoint

The class and method for login are similar to those for registration. Let's write it:

@blp.route("/login")
class UserLogin(MethodView):
    @blp.arguments(UserSchema)
    def post(self, user_data):
        user = UserModel.query.filter(
            UserModel.username == user_data["username"]
        ).first()

        if user and pbkdf2_sha256.verify(user_data["password"], user.password):
            access_token = create_access_token(identity=user.id)
            return {"access_token": access_token}, 200

        abort(401, message="Invalid credentials.")

We filter users in the database by username and check if such a user exists and if the password verification for this user passes. If so, we create a JWT access token.

In this method, we return an access token generated using the create_access_token function imported from the flask_jwt_extended library. We add the user ID information to the JWT access token so that when a user returns the JWT to us, we will know which user it belongs to.

If a user with the given username does not exist or the password does not match what is in the table, we return an error.

1. Which HTTP method is used by the UserLogin class to authenticate users?

2. What information is included in the JWT access token generated by the UserLogin method?

question mark

Which HTTP method is used by the UserLogin class to authenticate users?

Select the correct answer

question mark

What information is included in the JWT access token generated by the UserLogin method?

Select the correct answer

Tutto è chiaro?

Come possiamo migliorarlo?

Grazie per i tuoi commenti!

Sezione 5. Capitolo 4

Chieda ad AI

expand

Chieda ad AI

ChatGPT

Chieda pure quello che desidera o provi una delle domande suggerite per iniziare la nostra conversazione

course content

Contenuti del Corso

Professional Web API with Flask

Professional Web API with Flask

1. Introduction to the Course
Course OutlineAbout APIAbout REST APIProject DescriptionProject InitializationEnvironment Configuration and Dependency ManagementEstablish SSH Connection to GitHub
2. Database and Models
SQLAlchemy Set UpCreate ModelsMany-to-One RelationshipOne-to-One RelationshipMany-to-Many Relationship
3. Flask-Smorest and Schemas
Introduction to Flask-SmorestIntroduction to MarshmallowJSON ExplanationSchema Handling with Marshmallow
4. Endpoints with Blueprints and MethodView
Blueprints and MethodView OverviewStart with Blueprints and MethodViewsFirst Endpoint, Flask-Migration and SQLite StudioPostman and InsomniaTeam EndpointsUser and Player EndpointsSwagger UI
5. Authentication with JWT
What is JWT?Flask-JWT-Extended Set UpUser RegistrationLogin EndpointJWT RequiredPermissionsLogout EndpointTesting New Endpoints
6. Deployment
Enhancing Your AppLast Git Push

book
Login Endpoint

The class and method for login are similar to those for registration. Let's write it:

@blp.route("/login")
class UserLogin(MethodView):
    @blp.arguments(UserSchema)
    def post(self, user_data):
        user = UserModel.query.filter(
            UserModel.username == user_data["username"]
        ).first()

        if user and pbkdf2_sha256.verify(user_data["password"], user.password):
            access_token = create_access_token(identity=user.id)
            return {"access_token": access_token}, 200

        abort(401, message="Invalid credentials.")

We filter users in the database by username and check if such a user exists and if the password verification for this user passes. If so, we create a JWT access token.

In this method, we return an access token generated using the create_access_token function imported from the flask_jwt_extended library. We add the user ID information to the JWT access token so that when a user returns the JWT to us, we will know which user it belongs to.

If a user with the given username does not exist or the password does not match what is in the table, we return an error.

1. Which HTTP method is used by the UserLogin class to authenticate users?

2. What information is included in the JWT access token generated by the UserLogin method?

question mark

Which HTTP method is used by the UserLogin class to authenticate users?

Select the correct answer

question mark

What information is included in the JWT access token generated by the UserLogin method?

Select the correct answer

Tutto è chiaro?

Come possiamo migliorarlo?

Grazie per i tuoi commenti!

Sezione 5. Capitolo 4
some-alt