【发布时间】:2018-08-09 07:03:07
【问题描述】:
我一直在关注http://www.django-rest-framework.org/tutorial/4-authentication-and-permissions/ 的教程(非常好),但我已经到了最后,我正在运行命令
http -a admin:password123 POST http://127.0.0.1:8000/snippets/ code="print 789"
它给了我一个错误:
HTTP/1.1 400 错误请求允许:GET、POST、HEAD、OPTIONS 内容长度:37 内容类型:application/json 日期:2 月 28 日,星期三 2018 18:29:15 GMT 服务器:WSGIServer/0.2 CPython/3.6.3 变化:接受, Cookie X 帧选项:SAMEORIGIN
{ “所有者”: [ “这是必填栏。” ] }
所有者字段在可浏览的 api 上也可见,为我创建的所有用户提供选项。但是,当保存它(浏览器或命令行)时,它确实会保存发出请求的用户,因此该部分是正确的。我认为它不应该在可浏览的 api 上可见,也不需要在 api 调用中,因为它是从请求中计算出来的。
这是我的代码:
views.py:
class SnippetList(generics.ListCreateAPIView):
queryset = Snippet.objects.all()
serializer_class = SnippetSerializer
permission_classes = (permissions.IsAuthenticatedOrReadOnly,)
def perform_create(self, serializer):
serializer.save(owner=self.request.user)
models.py:
class Snippet(models.Model):
created = models.DateTimeField(auto_now_add=True)
title = models.CharField(max_length=100, blank=True, default='')
code = models.TextField()
linenos = models.BooleanField(default=False)
language = models.CharField(choices=LANGUAGE_CHOICES, default='python', max_length=100)
style = models.CharField(choices=STYLE_CHOICES, default='friendly', max_length=100)
owner = models.ForeignKey('auth.User', related_name='snippets', on_delete=models.CASCADE)
highlighted = models.TextField()
class Meta:
ordering = ('created',)
def save(self, *args, **kwargs):
lexer = get_lexer_by_name(self.language)
linenos = self.linenos and 'table' or False
options = self.title and {'title': self.title} or {}
formatter = HtmlFormatter(style=self.style, linenos=linenos, full=True, **options)
self.highlighted = highlight(self.code, lexer, formatter)
super(Snippet, self).save(*args, **kwargs)
序列化器.py
class SnippetSerializer(serializers.ModelSerializer):
class Meta:
model = Snippet
fields = ('id', 'title', 'code', 'linenos', 'language', 'style', 'owner')
owner = serializers.ReadOnlyField(source='owner.username')
【问题讨论】:
-
遇到了同样的问题。评论以增加知名度。
标签: python django django-rest-framework