Notice: This page requires JavaScript to function properly.
Please enable JavaScript in your browser settings or update your browser.Lära Login Endpoint | Authentication with JWT
Professional Web API with Flask
course content

Kursinnehåll

Professional Web API with Flask

Professional Web API with Flask

1. Introduction to the Course
Course OutlineAbout APIAbout REST APIProject DescriptionProject InitializationEnvironment Configuration and Dependency ManagementEstablish SSH Connection to GitHub
2. Database and Models
SQLAlchemy Set UpCreate ModelsMany-to-One RelationshipOne-to-One RelationshipMany-to-Many Relationship
3. Flask-Smorest and Schemas
Introduction to Flask-SmorestIntroduction to MarshmallowJSON ExplanationSchema Handling with Marshmallow
4. Endpoints with Blueprints and MethodView
Blueprints and MethodView OverviewStart with Blueprints and MethodViewsFirst Endpoint, Flask-Migration and SQLite StudioPostman and InsomniaTeam EndpointsUser and Player EndpointsSwagger UI
5. Authentication with JWT
What is JWT?Flask-JWT-Extended Set UpUser RegistrationLogin EndpointJWT RequiredPermissionsLogout EndpointTesting New Endpoints
6. Deployment
Enhancing Your AppLast Git Push

book
Login Endpoint

The class and method for login are similar to those for registration. Let's write it:

@blp.route("/login")
class UserLogin(MethodView):
    @blp.arguments(UserSchema)
    def post(self, user_data):
        user = UserModel.query.filter(
            UserModel.username == user_data["username"]
        ).first()

        if user and pbkdf2_sha256.verify(user_data["password"], user.password):
            access_token = create_access_token(identity=user.id)
            return {"access_token": access_token}, 200

        abort(401, message="Invalid credentials.")

We filter users in the database by username and check if such a user exists and if the password verification for this user passes. If so, we create a JWT access token.

In this method, we return an access token generated using the create_access_token function imported from the flask_jwt_extended library. We add the user ID information to the JWT access token so that when a user returns the JWT to us, we will know which user it belongs to.

If a user with the given username does not exist or the password does not match what is in the table, we return an error.

1. Which HTTP method is used by the UserLogin class to authenticate users?

2. What information is included in the JWT access token generated by the UserLogin method?

question mark

Which HTTP method is used by the UserLogin class to authenticate users?

Select the correct answer

question mark

What information is included in the JWT access token generated by the UserLogin method?

Select the correct answer

Var allt tydligt?

Hur kan vi förbättra det?

Tack för dina kommentarer!

Avsnitt 5. Kapitel 4

Fråga AI

expand

Fråga AI

ChatGPT

Fråga vad du vill eller prova någon av de föreslagna frågorna för att starta vårt samtal

course content

Kursinnehåll

Professional Web API with Flask

Professional Web API with Flask

1. Introduction to the Course
Course OutlineAbout APIAbout REST APIProject DescriptionProject InitializationEnvironment Configuration and Dependency ManagementEstablish SSH Connection to GitHub
2. Database and Models
SQLAlchemy Set UpCreate ModelsMany-to-One RelationshipOne-to-One RelationshipMany-to-Many Relationship
3. Flask-Smorest and Schemas
Introduction to Flask-SmorestIntroduction to MarshmallowJSON ExplanationSchema Handling with Marshmallow
4. Endpoints with Blueprints and MethodView
Blueprints and MethodView OverviewStart with Blueprints and MethodViewsFirst Endpoint, Flask-Migration and SQLite StudioPostman and InsomniaTeam EndpointsUser and Player EndpointsSwagger UI
5. Authentication with JWT
What is JWT?Flask-JWT-Extended Set UpUser RegistrationLogin EndpointJWT RequiredPermissionsLogout EndpointTesting New Endpoints
6. Deployment
Enhancing Your AppLast Git Push

book
Login Endpoint

The class and method for login are similar to those for registration. Let's write it:

@blp.route("/login")
class UserLogin(MethodView):
    @blp.arguments(UserSchema)
    def post(self, user_data):
        user = UserModel.query.filter(
            UserModel.username == user_data["username"]
        ).first()

        if user and pbkdf2_sha256.verify(user_data["password"], user.password):
            access_token = create_access_token(identity=user.id)
            return {"access_token": access_token}, 200

        abort(401, message="Invalid credentials.")

We filter users in the database by username and check if such a user exists and if the password verification for this user passes. If so, we create a JWT access token.

In this method, we return an access token generated using the create_access_token function imported from the flask_jwt_extended library. We add the user ID information to the JWT access token so that when a user returns the JWT to us, we will know which user it belongs to.

If a user with the given username does not exist or the password does not match what is in the table, we return an error.

1. Which HTTP method is used by the UserLogin class to authenticate users?

2. What information is included in the JWT access token generated by the UserLogin method?

question mark

Which HTTP method is used by the UserLogin class to authenticate users?

Select the correct answer

question mark

What information is included in the JWT access token generated by the UserLogin method?

Select the correct answer

Var allt tydligt?

Hur kan vi förbättra det?

Tack för dina kommentarer!

Avsnitt 5. Kapitel 4
some-alt