Using django-rest-framework 3 and django 1.8 I am trying to create a user using django-rest-framework ModelViewSerializer. problem is that the default objects.create method used by DRF leave the password as plain text. The problem is that DRF serialzer create method is using <code>objects.create</code> querysets/#create method instead of using <code>objects.create_user</code> method. code from serializers.py line 775 <pre class="prettyprint"><code>instance = ModelClass.objects.create(**validated_data) </code></pre> What is the best solution for this? i can override the serializer.create method to use objects.user_create instead of objects.create but it does not feel like the right solution. rest of code: <pre class="prettyprint"><code>from django.contrib.auth.models import User from rest_framework import viewsets class UserSerializer(serializers.ModelSerializer): class Meta: model = User fields = ('username', 'email','password') write_only_fields = ('password',) class UserViewSet(viewsets.ModelViewSet): queryset = User.objects.all() serializer = UserSerializer() </code></pre>

you can override <code>create</code> in UserSerializer: <pre class="prettyprint lang-python prettyprint-override"><code>class UserSerializer(serializers.ModelSerializer): # .... def create(self, validated_data): user = User.objects.create_user(**validated_data) return user </code></pre> other solutions can be overriding <code>perform_create</code> in ViewSet class or you can write your own <code>create</code> method in your viewset class <pre class="prettyprint"><code>class UserViewSet(viewsets.ModelViewSet): def create(self, request, format=None): # create user here # do not call seriailzer.save() </code></pre> UPDATE: after @freethebees commented, overriding <code>perform_create</code> also works, so here is the code snippet: <pre class="prettyprint"><code>class UserViewSet(viewsets.ModelViewSet, mixins.CreateModelMixin): def perform_create(self, serializer): # use User.objects.create_user to create user pass </code></pre> NOTE: this answer gives 3 solutions, choose the one you think it better fits your needs and your project's ecosystem NOTE 2 I personally prefer overriding <code>create</code> in <code>UserViewSet</code> (second code snippet) because there you can simply return your custom <code>Response</code> (for example return user profile after login)

django rest framework create user with password

Using django-rest-framework 3 and django 1.8

I am trying to create a user using django-rest-framework ModelViewSerializer. problem is that the default objects.create method used by DRF leave the password as plain text.

The problem is that DRF serialzer create method is using objects.create querysets/#create method instead of using objects.create_user method.

code from serializers.py line 775

instance = ModelClass.objects.create(**validated_data)

What is the best solution for this? i can override the serializer.create method to use objects.user_create instead of objects.create but it does not feel like the right solution.

rest of code:

from django.contrib.auth.models import User
from rest_framework import viewsets

class UserSerializer(serializers.ModelSerializer):
    class Meta:
        model = User
        fields = ('username', 'email','password')
        write_only_fields = ('password',)


class UserViewSet(viewsets.ModelViewSet):   
    queryset = User.objects.all()
    serializer = UserSerializer()

How do I send a reset password link in Django REST framework?

Here we will use a library called django-rest-passwordreset for creating Reset or Forgot Password API using Django Rest Framework. In models.py add following signal for sending email. Now copy that token which comes in email and and post token and password to /api/password_reset/confirm/ api url.

Can we create user without password in Django?

Programmatically, you can create / save a new User without a password argument, and it will not raise any exceptions. In fact, you can even create a user without any arguments.

you can override create in UserSerializer:

class UserSerializer(serializers.ModelSerializer):
    # ....

    def create(self, validated_data):
        user = User.objects.create_user(**validated_data)
        return user

other solutions can be overriding perform_create in ViewSet class or you can write your own create method in your viewset class

class UserViewSet(viewsets.ModelViewSet): 
    def create(self, request, format=None):
        # create user here
        # do not call seriailzer.save()

UPDATE: after @freethebees commented, overriding perform_create also works, so here is the code snippet:

class UserViewSet(viewsets.ModelViewSet, mixins.CreateModelMixin): 
    def perform_create(self, serializer):
        # use User.objects.create_user to create user
        pass

NOTE: this answer gives 3 solutions, choose the one you think it better fits your needs and your project's ecosystem

NOTE 2 I personally prefer overriding create in UserViewSet (second code snippet) because there you can simply return your custom Response (for example return user profile after login)

django rest framework create user with password

Tags:

python

django

django-rest-framework

yossi

People also ask

1 Answers

aliva

Recent Activity

Donate For Us

django rest framework create user with password

Tags:

python

django

django-rest-framework

yossi

People also ask

1 Answers

aliva

Related questions

Recent Activity

Donate For Us