``` Django与Vue.js整合方案 根据您提供的代码,我理解您需要将Django后端与Vue.js前端进行整合。您的Django后端提供了API接口,而前端是完全独立的Vue.js应用。以下是完整的整合方案: 整合思路 前后端分离架构:Django作为API服务器,Vue.js作为独立前端应用 API通信:Vue.js前端通过AJAX调用Django REST API 身份验证:使用Django的session认证或JWT认证 静态文件服务:Django提供静态文件服务,或使用独立Web服务器 实现步骤 1. 创建Django API端点 首先,为Vue.js前端创建专用的API端点: python # api/urls.py from django.urls import path from . import views urlpatterns = [ path('login/', views.api_login, name='api_login'), path('register/', views.api_register, name='api_register'), path('families/', views.api_families, name='api_families'), path('families//', views.api_family_detail, name='api_family_detail'), path('families//members/', views.api_family_members, name='api_family_members'), path('transactions/', views.api_transactions, name='api_transactions'), # 其他API端点... ] python # api/views.py from django.http import JsonResponse from django.views.decorators.csrf import csrf_exempt from django.contrib.auth import authenticate, login as auth_login import json from User.services import AuthService, FamilyService from Transaction.services import TransactionService @csrf_exempt def api_login(request): if request.method == 'POST': try: data = json.loads(request.body) username = data.get('username') password = data.get('password') user = authenticate(username=username, password=password) if user is not None: auth_login(request, user) return JsonResponse({ 'success': True, 'user': { 'id': user.id, 'username': user.username, 'displayName': user.nickname or user.username } }) else: return JsonResponse({'success': False, 'error': '用户名或密码错误'}) except Exception as e: return JsonResponse({'success': False, 'error': str(e)}) return JsonResponse({'success': False, 'error': '无效的请求方法'}) @csrf_exempt def api_register(request): if request.method == 'POST': try: data = json.loads(request.body) username = data.get('username') password = data.get('password') display_name = data.get('displayName', username) # 使用AuthService创建用户 user = AuthService.create_user(username, display_name, password) # 自动创建个人家庭 family, membership = FamilyService.create_family(user, f"{display_name}的个人家庭", "创建者") # 自动登录 auth_login(request, user) return JsonResponse({ 'success': True, 'user': { 'id': user.id, 'username': user.username, 'displayName': display_name }, 'family': { 'id': family.family_id, 'name': family.family_name, 'code': family.family_code # 需要添加此字段到模型 } }) except Exception as e: return JsonResponse({'success': False, 'error': str(e)}) return JsonResponse({'success': False, 'error': '无效的请求方法'}) # 其他API视图函数... 2. 修改Vue.js前端以使用Django API 修改Vue.js应用的数据存储和API调用部分: javascript // 在Vue应用的data部分添加API基础URL data() { return { apiBaseUrl: '/api/', // Django API基础URL // 其他数据... }; }, javascript // 修改认证方法以使用Django API methods: { async tryLogin() { this.authError = ''; const username = (this.auth.username || '').trim(); const password = this.auth.password || ''; if (!username || !password) { this.authError = '请输入用户名和密码'; return; } try { const response = await fetch(`${this.apiBaseUrl}login/`, { method: 'POST', headers: { 'Content-Type': 'application/json', 'X-CSRFToken': this.getCSRFToken(), }, body: JSON.stringify({ username: username, password: password }) }); const data = await response.json(); if (data.success) { this.loginUser(data.user, data.family); } else { this.authError = data.error || '登录失败'; } } catch (error) { this.authError = '网络错误,请稍后重试'; } }, async tryRegister() { this.regError = ''; const username = (this.reg.username || '').trim(); const password = this.reg.password || ''; const displayName = (this.reg.displayName || '').trim(); if (!username || !password || !displayName) { this.regError = '请填写用户名、密码和显示名称'; return; } try { const response = await fetch(`${this.apiBaseUrl}register/`, { method: 'POST', headers: { 'Content-Type': 'application/json', 'X-CSRFToken': this.getCSRFToken(), }, body: JSON.stringify({ username: username, password: password, displayName: displayName }) }); const data = await response.json(); if (data.success) { this.loginUser(data.user, data.family); } else { this.regError = data.error || '注册失败'; } } catch (error) { this.regError = '网络错误,请稍后重试'; } }, getCSRFToken() { // 从cookie中获取CSRF token const name = 'csrftoken'; let cookieValue = null; if (document.cookie && document.cookie !== '') { const cookies = document.cookie.split(';'); for (let i = 0; i < cookies.length; i++) { const cookie = cookies[i].trim(); if (cookie.substring(0, name.length + 1) === (name + '=')) { cookieValue = decodeURIComponent(cookie.substring(name.length + 1)); break; } } } return cookieValue; }, // 修改loginUser方法 loginUser(user, family) { this.currentUser = user; this.currentFamily = family; this.loggedIn = true; // 加载家庭数据和记录 this.loadFamilyData(); // 初始化图表 this.$nextTick(() => { this.initCharts(); this.updateCharts(); this.analyzeExpenses(); }); }, // 添加加载家庭数据的方法 async loadFamilyData() { if (!this.currentFamily) return; try { // 加载家庭成员 const membersResponse = await fetch(`${this.apiBaseUrl}families/${this.currentFamily.id}/members/`); const membersData = await membersResponse.json(); if (membersData.success) { this.members = membersData.members; } // 加载收支记录 const recordsResponse = await fetch(`${this.apiBaseUrl}transactions/?family_id=${this.currentFamily.id}`); const recordsData = await recordsResponse.json(); if (recordsData.success) { this.records = recordsData.transactions; } } catch (error) { console.error('加载数据失败:', error); } }, // 修改添加记录方法 async addRecord() { // 验证逻辑... try { const response = await fetch(`${this.apiBaseUrl}transactions/`, { method: 'POST', headers: { 'Content-Type': 'application/json', 'X-CSRFToken': this.getCSRFToken(), }, body: JSON.stringify({ family_id: this.currentFamily.id, date: this.recordDate, type: this.recordType, amount: this.amount, category: this.category, remark: this.remark, member_id: this.selectedRecordMember }) }); const data = await response.json(); if (data.success) { // 添加成功,刷新数据 this.loadFamilyData(); this.resetRecordForm(); alert('记录保存成功!'); } else { alert('保存失败: ' + data.error); } } catch (error) { alert('网络错误,请稍后重试'); } }, // 其他方法也需要类似修改... } 3. 配置Django静态文件服务 在Django设置中配置静态文件服务: python # settings.py import os STATIC_URL = '/static/' STATICFILES_DIRS = [ os.path.join(BASE_DIR, 'static'), # Vue.js构建后的文件放在这里 ] STATIC_ROOT = os.path.join(BASE_DIR, 'staticfiles') 4. 创建主视图渲染Vue.js应用 python # views.py from django.shortcuts import render def index(request): """渲染Vue.js主应用""" return render(request, 'index.html') # 这是您的Vue.js HTML文件 python # urls.py from django.urls import path from . import views urlpatterns = [ path('', views.index, name='index'), path('api/', include('api.urls')), # 其他URL... ] 5. 部署配置 构建Vue.js应用:npm run build 将构建结果复制到Django的static目录 配置Django的URL以服务Vue.js应用 收集静态文件:python manage.py collectstatic 完整示例:API视图 以下是完整的API视图示例,支持Vue.js前端所需的所有功能: python # api/views.py from django.http import JsonResponse from django.views.decorators.csrf import csrf_exempt from django.contrib.auth import authenticate, login as auth_login, logout as auth_logout from django.contrib.auth.decorators import login_required from django.utils.decorators import method_decorator from django.views import View import json from User.services import AuthService, FamilyService from Transaction.services import TransactionService from User.models import User from Family.models import Family from FamilyMembers.models import FamilyMembers @csrf_exempt def api_login(request): if request.method == 'POST': try: data = json.loads(request.body) username = data.get('username') password = data.get('password') user = authenticate(username=username, password=password) if user is not None: auth_login(request, user) # 获取用户家庭信息 families = FamilyMembers.objects.filter(user=user) family_data = [] for fm in families: family_data.append({ 'id': fm.family.family_id, 'name': fm.family.family_name, 'code': getattr(fm.family, 'family_code', '000000'), 'role': fm.role }) return JsonResponse({ 'success': True, 'user': { 'id': user.id, 'username': user.username, 'displayName': user.nickname or user.username }, 'families': family_data }) else: return JsonResponse({'success': False, 'error': '用户名或密码错误'}) except Exception as e: return JsonResponse({'success': False, 'error': str(e)}) return JsonResponse({'success': False, 'error': '无效的请求方法'}) @csrf_exempt @login_required def api_logout(request): auth_logout(request) return JsonResponse({'success': True}) @csrf_exempt def api_register(request): if request.method == 'POST': try: data = json.loads(request.body) username = data.get('username') password = data.get('password') display_name = data.get('displayName', username) # 使用AuthService创建用户 user = AuthService.create_user(username, display_name, password) # 自动创建个人家庭 family, membership = FamilyService.create_family(user, f"{display_name}的个人家庭", "创建者") # 自动登录 auth_login(request, user) return JsonResponse({ 'success': True, 'user': { 'id': user.id, 'username': user.username, 'displayName': display_name }, 'family': { 'id': family.family_id, 'name': family.family_name, 'code': getattr(family, 'family_code', '000000') } }) except Exception as e: return JsonResponse({'success': False, 'error': str(e)}) return JsonResponse({'success': False, 'error': '无效的请求方法'}) @csrf_exempt @login_required def api_families(request): if request.method == 'GET': try: families = FamilyMembers.objects.filter(user=request.user) family_data = [] for fm in families: family_data.append({ 'id': fm.family.family_id, 'name': fm.family.family_name, 'code': getattr(fm.family, 'family_code', '000000'), 'role': fm.role }) return JsonResponse({'success': True, 'families': family_data}) except Exception as e: return JsonResponse({'success': False, 'error': str(e)}) elif request.method == 'POST': try: data = json.loads(request.body) family_name = data.get('name') family, membership = FamilyService.create_family( request.user, family_name, "创建者" ) return JsonResponse({ 'success': True, 'family': { 'id': family.family_id, 'name': family.family_name, 'code': getattr(family, 'family_code', '000000') } }) except Exception as e: return JsonResponse({'success': False, 'error': str(e)}) return JsonResponse({'success': False, 'error': '无效的请求方法'}) # 其他API视图... 总结 通过以上步骤,您可以成功将Django后端与Vue.js前端整合: 创建Django API端点:为Vue.js前端提供数据接口 修改Vue.js应用:使用fetch API与Django后端通信 处理身份验证:使用Django的session认证系统 配置静态文件服务:让Django服务Vue.js构建后的文件 这种架构保持了前后端分离的优势,同时利用Django的强大后端功能和Vue.js的灵活前端体验。 您需要根据实际模型字段调整API响应中的数据字段名称,并确保Django模型中有Vue.js前端所需的所有字段(如家庭代码等)。 ``` ``` from django.db import models from django.contrib.auth.models import AbstractBaseUser, BaseUserManager from django.core.validators import MinValueValidator import uuid ALTER USER 'root'@'localhost' IDENTIFIED BY ‘csl25679'; wget https://mirror.sjtu.edu.cn/flathub/flathub.gpg flatpak remote-modify --gpg-import=flathub.gpg flathub ``` ``` from django import forms from .models import Transaction, TransactionSplits class TransactionForm(forms.ModelForm): class Meta: model = Transaction fields = [ "trans_type", "amount", "trans_date", "category", "payment_method", "remark", "voucher_path" ] widgets = { "trans_date": forms.DateInput(attrs={"type": "date"}), } class TransactionSplitForm(forms.ModelForm): class Meta: model = TransactionSplits fields = ["user", "share_amount"] 🔹 services.py(权限 + 查询过滤逻辑) python 复制代码 from .models import Transaction, TransactionSplits, FamilyMembers from django.db.models import Q class PermissionService: @staticmethod def can_manage_transaction(user, transaction: Transaction): """判断用户是否能修改/删除交易""" # 发起人本身 if transaction.created_by == user: return True # 参与家庭的管理员 family_ids = ( FamilyMembers.objects.filter(user__in=transaction.splits.values("user")) .values_list("family_id", flat=True) .distinct() ) return FamilyMembers.objects.filter( family_id__in=family_ids, user=user, role=FamilyMembers.Role.ADMIN ).exists() @staticmethod def filter_transactions(user, filters): """根据查询条件筛选交易""" qs = Transaction.objects.all() # 权限限制:普通用户只能看到自己相关的交易 family_ids = FamilyMembers.objects.filter(user=user).values_list("family_id", flat=True) if not PermissionService.is_system_admin(user): qs = qs.filter( Q(created_by=user) | Q(splits__user=user) | Q(splits__user__familymembers__family_id__in=family_ids) ).distinct() # 多条件查询 if filters.get("date_from") and filters.get("date_to"): qs = qs.filter(trans_date__range=[filters["date_from"], filters["date_to"]]) if filters.get("member_id"): qs = qs.filter(splits__user_id=filters["member_id"]) if filters.get("category_id"): qs = qs.filter(category_id=filters["category_id"]) if filters.get("amount_min") and filters.get("amount_max"): qs = qs.filter(amount__gte=filters["amount_min"], amount__lte=filters["amount_max"]) return qs @staticmethod def is_system_admin(user): # 你这里可以扩展“系统管理员”的逻辑,比如 is_staff return user.is_staff 🔹 views.py python 复制代码 from django.shortcuts import render, get_object_or_404, redirect from django.contrib import messages from django.contrib.auth.decorators import login_required from .models import Transaction from .forms import TransactionForm from .services import PermissionService @login_required def transaction_list(request): filters = { "date_from": request.GET.get("date_from"), "date_to": request.GET.get("date_to"), "member_id": request.GET.get("member_id"), "category_id": request.GET.get("category_id"), "amount_min": request.GET.get("amount_min"), "amount_max": request.GET.get("amount_max"), } transactions = PermissionService.filter_transactions(request.user, filters) return render(request, "transactions/list.html", {"transactions": transactions}) @login_required def transaction_create(request): if request.method == "POST": form = TransactionForm(request.POST, request.FILES) if form.is_valid(): transaction = form.save(commit=False) transaction.created_by = request.user transaction.save() messages.success(request, "交易已创建") return redirect("transaction_list") else: form = TransactionForm() return render(request, "transactions/form.html", {"form": form}) @login_required def transaction_edit(request, pk): transaction = get_object_or_404(Transaction, pk=pk) if not PermissionService.can_manage_transaction(request.user, transaction): messages.error(request, "无权修改该交易") return redirect("transaction_list") if request.method == "POST": form = TransactionForm(request.POST, request.FILES, instance=transaction) if form.is_valid(): form.save() messages.success(request, "交易已更新") return redirect("transaction_list") else: form = TransactionForm(instance=transaction) return render(request, "transactions/form.html", {"form": form}) @login_required def transaction_delete(request, pk): transaction = get_object_or_404(Transaction, pk=pk) if not PermissionService.can_manage_transaction(request.user, transaction): messages.error(request, "无权删除该交易") return redirect("transaction_list") if request.method == "POST": # 二次确认通过 transaction.delete() messages.success(request, "交易已删除") return redirect("transaction_list") return render(request, "transactions/confirm_delete.html", {"transaction": transaction}) 🔹 关键点说明我并不需要重新渲染网页啊?我就一个网页profile显示这些所有功能 ``` ``` HelloWorld/HelloWorld/search.py 文件代码: from django.http import HttpResponse from django.shortcuts import render # 表单 def search_form(request): return render(request, 'search_form.html') # 接收请求数据 def search(request): request.encoding='utf-8' if 'q' in request.GET and request.GET['q']: message = '你搜索的内容为: ' + request.GET['q'] else: message = '你提交了空表单' return HttpResponse(message) 在模板目录 templates 中添加 search_form.html 表单: /HelloWorld/templates/search_form.html 文件代码: 菜鸟教程(runoob.com)
urls.py 规则修改为如下形式: /HelloWorld/HelloWorld/urls.py 文件代码: from django.conf.urls import url from . import views,testdb,search urlpatterns = [ url(r'^hello/$', views.runoob), url(r'^testdb/$', testdb.testdb), url(r'^search-form/$', search.search_form), url(r'^search/$', search.search), ] 访问地址 http://127.0.0.1:8000/search-form/ 并搜索,结果如下所示: POST 方法 上面我们使用了 GET 方法,视图显示和请求处理分成两个函数处理。 提交数据时更常用 POST 方法。我们下面使用该方法,并用一个URL和处理函数,同时显示视图和处理请求。 我们在 templates 创建 post.html: /HelloWorld/templates/post.html 文件代码: 菜鸟教程(runoob.com)
{% csrf_token %}

{{ rlt }}

在模板的末尾,我们增加一个 rlt 记号,为表格处理结果预留位置。 表格后面还有一个 {% csrf_token %} 的标签。csrf 全称是 Cross Site Request Forgery。这是 Django 提供的防止伪装提交请求的功能。POST 方法提交的表格,必须有此标签。 在HelloWorld目录下新建 search2.py 文件并使用 search_post 函数来处理 POST 请求: /HelloWorld/HelloWorld/search2.py 文件代码: # -*- coding: utf-8 -*- from django.shortcuts import render from django.views.decorators import csrf # 接收POST请求数据 def search_post(request): ctx ={} if request.POST: ctx['rlt'] = request.POST['q'] return render(request, "post.html", ctx) urls.py 规则修改为如下形式: /HelloWorld/HelloWorld/urls.py 文件代码: from django.conf.urls import url from . import views,testdb,search,search2 urlpatterns = [ url(r'^hello/$', views.hello), url(r'^testdb/$', testdb.testdb), url(r'^search-form/$', search.search_form), url(r'^search/$', search.search), url(r'^search-post/$', search2.search_post), ] ``` ``` class ExpendType(models.Model): expendTypeId = models.AutoField(primary_key=True, verbose_name='支出类型id') expendTypeName = models.CharField(max_length=20, default='', verbose_name='支出类型名称') class Meta: db_table = 't_ExpendType' verbose_name = '支出类型信息' verbose_name_plural = verbose_name class Income(models.Model): incomeId = models.AutoField(primary_key=True, verbose_name='收入id') incomeTypeObj = models.ForeignKey(IncomeType, db_column='incomeTypeObj', on_delete=models.PROTECT, verbose_name='收入类型') incomeFrom = models.CharField(max_length=50, default='', verbose_name='收入来源') payWayObj = models.ForeignKey(PayWay, db_column='payWayObj', on_delete=models.PROTECT, verbose_name='支付方式') payAccount = models.CharField(max_length=20, default='', verbose_name='支付账号') incomeMoney = models.DecimalField(max_digits=10, decimal_places=2, verbose_name='收入金额') incomeDate = models.CharField(max_length=20, default='', verbose_name='收入日期') userObj = models.ForeignKey(UserInfo, db_column='userObj', on_delete=models.PROTECT, verbose_name='收入用户') incomeMemo = models.CharField(max_length=800, default='', verbose_name='收入备注') class Meta: db_table = 't_Income' verbose_name = '收入信息' verbose_name_plural = verbose_name class IncomeType(models.Model): typeId = models.AutoField(primary_key=True, verbose_name='分类id') typeName = models.CharField(max_length=20, default='', verbose_name='分类名称') class Meta: db_table = 't_IncomeType' verbose_name = '收入分类信息' verbose_name_plural = verbose_name class Admin(models.Model): username = models.CharField(max_length=20, primary_key=True, verbose_name='用户名') password = models.CharField(max_length=32, verbose_name='登录密码') class PayWay(models.Model): payWayId = models.AutoField(primary_key=True, verbose_name='支付方式id') payWayName = models.CharField(max_length=20, default='', verbose_name='支付方式名称') class Meta: db_table = 't_PayWay' verbose_name = '支付方式信息' verbose_name_plural = verbose_name class UserInfo(models.Model): user_name = models.CharField(max_length=30, default='', primary_key=True, verbose_name='用户名') password = models.CharField(max_length=30, default='', verbose_name='登录密码') name = models.CharField(max_length=20, default='', verbose_name='姓名') gender = models.CharField(max_length=4, default='', verbose_name='性别') birthDate = models.CharField(max_length=20, default='', verbose_name='出生日期') userPhoto = models.ImageField(upload_to='img', max_length='100', verbose_name='用户照片') telephone = models.CharField(max_length=20, default='', verbose_name='联系电话') email = models.CharField(max_length=50, default='', verbose_name='邮箱') address = models.CharField(max_length=80, default='', verbose_name='家庭地址') regTime = models.CharField(max_length=20, default='', verbose_name='注册时间') class Meta: db_table = 't_UserInfo' verbose_name = '用户信息' verbose_name_plural = verbose_name ``` ``` 注册用户身份 普通成员:可以不选择家庭(单独存在)。 管理员:也可以不选择家庭,但有“创建家庭”的权限。 普通成员加入家庭 家庭必须已存在。 不能创建家庭。 管理员加入家庭 如果家庭存在 → 只能作为普通成员加入。 如果家庭不存在 → 以管理员身份创建并成为家庭管理员。 管理员添加用户到家庭 无论对方身份是什么(哪怕是管理员),统一以普通成员身份加入。每个用户就是一个普通用户,是否为“家庭管理员”完全取决于他在某个家庭中的 role。 在注册界面,如果要注册为一个普通成员,必须先加入一个家庭,否则拒绝注册。 注册成管理员必须先加入一个家庭作为管理员,或者创建一个家庭并且作为管理员。 普通成员加入一个家庭,家庭必须已经存在,否则,必须以管理员的身份创建一个家庭并且作为家庭的管理员。 管理员加入一个家庭,家庭必须已经存在,作为普成员录入。否则,必须以管理员的身份创建一个家庭,并且作为家庭的管理员。 管理员使得其它用户(哪怕是其它家庭的管理员)加入一个家庭时,一律以普通成员录入。 解散一个家庭,删除family_member表里的所有关联这个家庭id的成员 ``` ``` for tu in TransactionUsers.objects.filter(transaction=transaction): family_ids=tu.user.FamilyMembers_set.values_list('family_id', flat=True) if any(PermissionService.is_family_admin(user, fid) for fid in family_ids): return True ``` ``` xhr.js:195 POST http://127.0.0.1:8000/api/register/ 500 (Internal Server Error) (匿名) @ xhr.js:195 xhr @ xhr.js:15 _t @ dispatchRequest.js:51 value @ Axios.js:187 (匿名) @ Axios.js:40 p @ axios.min.js:2 (匿名) @ axios.min.js:2 (匿名) @ axios.min.js:2 p @ axios.min.js:2 a @ axios.min.js:2 (匿名) @ axios.min.js:2 (匿名) @ axios.min.js:2 (匿名) @ Axios.js:63 (匿名) @ Axios.js:226 (匿名) @ bind.js:5 tryRegister @ (索引):944 callWithErrorHandling @ vue.global.js:2448 callWithAsyncErrorHandling @ vue.global.js:2455 invoker @ vue.global.js:11346 ``` 先删关联表 然后在删除成员