本教程详细介绍了如何在Angular前端与Flask后端应用中构建用户数据个性化功能,以展示用户专属的汽车租赁预订信息。内容涵盖了从后端会话管理和用户ID传递,到前端服务层的数据获取与组件渲染的完整流程,并纠正了在用户登录后未能正确将用户ID传递至前端的关键问题,确保用户只能查看自己的预订记录。
在现代Web应用中,为用户提供个性化体验是至关重要的。这意味着当用户登录后,他们应该只能看到与自己账户相关的数据,例如个人资料、订单历史或预订记录。本文将以一个Angular前端与Flask后端集成的汽车租赁网站为例,详细讲解如何实现这一功能,确保用户数据的隔离性和准确性。
核心概念与技术栈
本教程涉及的技术栈包括:
前端: Angular (用于构建用户界面和处理HTTP请求)后端: Flask (Python Web框架,处理业务逻辑和API请求)数据库: SQLite (轻量级关系型数据库,用于存储用户和预订数据)会话管理: Flask session (用于在服务器端存储用户状态,如用户ID)跨域请求: Flask-CORS (处理前端与后端之间的跨域通信)
实现用户数据个性化的关键在于:
用户认证: 验证用户身份,确保只有合法用户才能访问系统。会话管理: 在用户登录后,在服务器端存储用户的唯一标识(如用户ID)。用户ID传递: 将用户ID安全地传递给前端,或在后端通过会话机制自动关联。数据过滤: 在后端根据用户ID查询数据库,只返回属于当前用户的数据。
后端实现:Flask与SQLite
后端负责用户认证、会话管理以及根据用户ID过滤数据。
1. 数据库结构
我们需要两个核心表:users 表存储用户信息,reservations 表存储预订信息,并通过 user_id 外键与 users 表关联。
import sqlite3import hashlibfrom flask import Flask, request, jsonify, sessionfrom flask_cors import CORSapp = Flask(__name__)CORS(app)app.config['SECRET_KEY'] = 'your_secret_key_here' # 生产环境请使用更复杂的密钥def hash_password(password): return hashlib.sha256(password.encode()).hexdigest()def create_users_table(): with sqlite3.connect('rental-users.db') as conn: cursor = conn.cursor() cursor.execute(''' CREATE TABLE IF NOT EXISTS users ( id INTEGER PRIMARY KEY AUTOINCREMENT, firstname TEXT NOT NULL, lastname TEXT NOT NULL, email TEXT UNIQUE NOT NULL, mobile TEXT NOT NULL, gender TEXT NOT NULL, hashed_password TEXT NOT NULL ) ''') conn.commit()def create_reservations_table(): with sqlite3.connect('rental-users.db') as conn: cursor = conn.cursor() cursor.execute(''' CREATE TABLE IF NOT EXISTS reservations ( id INTEGER PRIMARY KEY AUTOINCREMENT, user_id INTEGER, brand TEXT NOT NULL, from_location TEXT NOT NULL, to_location TEXT NOT NULL, FOREIGN KEY (user_id) REFERENCES users (id) ) ''') conn.commit()create_users_table()create_reservations_table()
2. 用户注册与登录
注册功能负责创建新用户。登录功能则验证用户凭据,并在成功后将用户ID存储到Flask的会话中。
关键修正: login_user 接口在成功登录后,需要将用户的ID返回给前端,以便前端能够知晓当前登录用户是谁。原始代码只返回了成功消息,导致前端无法获取用户ID。
# ... (previous code) ...@app.route('/register', methods=['POST'])def register_user(): data = request.json required_fields = ['firstname', 'lastname', 'email', 'mobile', 'gender', 'pwd'] for field in required_fields: if field not in data: return jsonify({'error': f'Missing required field: {field}'}), 400 with sqlite3.connect('rental-users.db') as conn: cursor = conn.cursor() cursor.execute('SELECT * FROM users WHERE email = ?', (data['email'],)) existing_user = cursor.fetchone() if existing_user: return jsonify({'error': 'Email is already registered'}), 400 hashed_password = hash_password(data['pwd']) with sqlite3.connect('rental-users.db') as conn: cursor = conn.cursor() cursor.execute(''' INSERT INTO users (firstname, lastname, email, mobile, gender, hashed_password) VALUES (?, ?, ?, ?, ?, ?) ''', (data['firstname'], data['lastname'], data['email'], data['mobile'], data['gender'], hashed_password)) conn.commit() return jsonify({'message': 'Registration successful'})@app.route('/login', methods=['POST'])def login_user(): data = request.json required_fields = ['email', 'pwd'] for field in required_fields: if field not in data: return jsonify({'error': f'Missing required field: {field}'}), 400 with sqlite3.connect('rental-users.db') as conn: cursor = conn.cursor() cursor.execute('SELECT * FROM users WHERE email = ?', (data['email'],)) user = cursor.fetchone() if user: hashed_password = hash_password(data['pwd']) if hashed_password == user[6]: # Assuming hashed_password is at index 6 session['user_id'] = user[0] # Store user ID in session # 关键修正:返回用户ID给前端 return jsonify({'message': 'Login successful', 'user_id': user[0], 'firstname': user[1], 'lastname': user[2], 'email': user[3]}) else: return jsonify({'error': 'Invalid password'}), 401 else: return jsonify({'error': 'User not found'}), 404@app.route('/logout', methods=['POST'])def logout_user(): session.pop('user_id', None) return jsonify({'message': 'Logout successful'})
3. 预订与获取用户专属预订
make_reservation 接口接收用户ID和预订详情,并将其存储到数据库。get_user_reservations 接口则根据传入的 user_id 从数据库中查询并返回该用户的所有预订记录。
# ... (previous code) ...@app.route('/make-reservation/', methods=['POST'])def make_reservation(user_id): data = request.json with sqlite3.connect('rental-users.db') as conn: cursor = conn.cursor() cursor.execute(''' INSERT INTO reservations (user_id, brand, from_location, to_location) VALUES (?, ?, ?, ?) ''', (user_id, data.get('brand'), data.get('from_location'), data.get('to_location'))) conn.commit() return jsonify({'message': 'Reservation successful'})@app.route('/user-reservations/', methods=['GET'])def get_user_reservations(user_id): with sqlite3.connect('rental-users.db') as conn: cursor = conn.cursor() # 注意:sqlite3.Cursor.execute 期望参数为元组或列表,即使只有一个参数 # 原始代码 (user_id,) 是正确的。如果将其改为 user_id,可能会导致类型错误。 cursor.execute('SELECT * FROM reservations WHERE user_id = ?', (user_id,)) reservations = [ {'id': row[0], 'user_id': row[1], 'brand': row[2], 'from_location': row[3], 'to_location': row[4]} for row in cursor.fetchall() ] return jsonify(reservations)if __name__ == '__main__': app.run(debug=True)
关于SQLite参数传递的说明:sqlite3.Cursor.execute 方法的第二个参数期望是一个序列(如元组或列表),即使只有一个参数也应如此。例如,cursor.execute(‘SELECT * FROM users WHERE id = ?’, (user_id,)) 是正确的写法。如果写成 cursor.execute(‘SELECT * FROM users WHERE id = ?’, user_id),当 user_id 是一个整数时,Python会尝试迭代这个整数,从而引发 TypeError。因此,原始代码中 (user_id,) 的写法是符合 sqlite3 库要求的。
前端实现:Angular
前端负责用户界面的交互、调用后端API以及展示个性化数据。
1. 认证服务 (AuthorizationService)
该服务管理用户的登录状态和用户ID。
关键修正: loginUser 方法在接收到后端返回的用户ID后,需要将其存储在服务内部,以便其他组件可以访问。
import { Injectable } from '@angular/core';import { Router } from '@angular/router';import { HttpClient } from '@angular/common/http';import { Observable, throwError } from 'rxjs';import { catchError, tap } from 'rxjs/operators';@Injectable({ providedIn: 'root'})export class AuthorizationService { private apiUrl = 'http://localhost:5000'; // 存储用户ID和基本信息 private user: { id: number | null; firstname: string; lastname: string; email: string } = { id: null, firstname: '', lastname: '', email: '' }; private logged = false; private signedUp = false; get isLoggedIn(): boolean { return this.logged; } hasSignedUp(): boolean { return this.signedUp; } loginUser(loginData: any): Observable { const url = `${this.apiUrl}/login`; return this.http.post(url, loginData).pipe( tap((response: any) => { // 修正:接收后端返回的完整响应 if (response && response.user_id) { // 检查后端是否返回了user_id this.user.id = response.user_id; this.user.firstname = response.firstname; // 根据后端返回的数据更新 this.user.lastname = response.lastname; this.user.email = response.email; this.logged = true; // 可以在这里添加导航到首页的逻辑 this.router.navigate(['/home']); } else { // 如果后端没有返回user_id,则视为登录失败或不完整 this.logged = false; console.error('Login successful, but user ID not received from backend.'); } }), catchError((error) => { this.logged = false; this.user = { id: null, firstname: '', lastname: '', email: '' }; // 清空用户信息 return throwError(error); }) ); } logout(): Observable { const url = `${this.apiUrl}/logout`; return this.http.post(url, {}).pipe( tap(() => { this.user = { id: null, firstname: '', lastname: '', email: '' }; this.logged = false; this.router.navigate(['/login']); }), catchError((error) => { console.error('Logout error:', error); return throwError(error); }) ); } registerUser(formData: any): Observable { const url = `${this.apiUrl}/register`; return this.http.post(url, formData).pipe( tap((response: any) => { // 注册成功通常不需要立即获取user_id,除非是自动登录 this.signedUp = true; }), catchError((error) => { this.signedUp = false; return throwError(error); }) ); } getUserId(): number | null { return this.user.id; } constructor(private router: Router, private http: HttpClient) {}}
2. 预订服务 (ReservationService)
该服务负责与后端预订相关的API进行交互。
import { Injectable } from '@angular/core';import { HttpClient } from '@angular/common/http';import { Observable } from 'rxjs';@Injectable({ providedIn: 'root',})export class ReservationService { private apiUrl = 'http://localhost:5000'; constructor(private http: HttpClient) {} makeReservation(userId: number, selectedCar: string, fromLocation: string, toLocation: string): Observable { const url = `${this.apiUrl}/make-reservation/${userId}`; const reservationData = { brand: selectedCar, from_location: fromLocation, to_location: toLocation, }; return this.http.post(url, reservationData); } getUserReservations(userId: number): Observable { const url = `${this.apiUrl}/user-reservations/${userId}`; return this.http.get(url); }}
3. 我的预订组件 (MyReservationsComponent)
此组件负责显示用户的预订列表,并在用户进行新预订时调用相应服务。
import { Component, OnInit } from '@angular/core';import { AuthorizationService } from '../authorization.service';import { ReservationService } from '../reservation.service';import { ToastrService } from 'ngx-toastr';@Component({ selector: 'app-my-reservations', templateUrl: './my-reservations.component.html', styleUrls: ['./my-reservations.component.css'],})export class MyReservationsComponent implements OnInit { reservationData = { brand: '', from_location: '', to_location: '', }; reservations: any[] = []; constructor( private reservationService: ReservationService, private authService: AuthorizationService, private toastr: ToastrService, ) {} ngOnInit() { this.loadReservationHistory(); } makeReservation() { const userId = this.authService.getUserId(); if (userId === null) { this.toastr.error('Please log in to make a reservation.', 'Error'); return; } console.log('Reservation Payload:', { userId: userId, brand: this.reservationData.brand, from_location: this.reservationData.from_location, to_location: this.reservationData.to_location, }); this.reservationService .makeReservation( userId, // 确保传递的是有效的用户ID this.reservationData.brand, this.reservationData.from_location, this.reservationData.to_location ) .subscribe( (res) => { console.log(res); this.toastr.success('Reservation successful!', 'Success'); this.loadReservationHistory(); // 重新加载预订历史 // 清空表单 this.reservationData = { brand: '', from_location: '', to_location: '' }; }, (err) => { console.error(err); this.toastr.error('Error making reservation', 'Error'); } ); } loadReservationHistory() { const userId = this.authService.getUserId(); if (userId === null) { this.reservations = []; // 未登录则清空预订列表 // this.toastr.info('Please log in to view your reservations.', 'Info'); // 可选提示 return; } this.reservationService.getUserReservations(userId).subscribe( (res) => { console.log('User Reservations:', res); this.reservations = res; }, (err) => { console.error('Error loading reservations:', err); this.toastr.error('Failed to load reservations.', 'Error'); } ); }}
4. 登录组件 (LoginComponent)
登录组件负责用户登录,并在成功后通过 AuthorizationService 更新登录状态。
import { Component, OnInit } from '@angular/core';import { AuthorizationService } from '../authorization.service';import { FormControl, FormGroup, Validators } from '@angular/forms';import { Router } from '@angular/router';import { ToastrService } from 'ngx-toastr'@Component({ selector: 'app-login', templateUrl: './login.component.html', styleUrls: ['./login.component.css']})export class LoginComponent implements OnInit { // 实现OnInit接口 constructor(private authService: AuthorizationService, private router: Router, private toastr: ToastrService) {} loginForm = new FormGroup({ email: new FormControl("", [Validators.required, Validators.email]), pwd: new FormControl("", [Validators.required, Validators.minLength(6), Validators.maxLength(15)]) }); loginSubmitted() { if (this.loginForm.invalid) { this.toastr.error('Please enter valid email and password.', 'Validation Error'); return; } this.authService.loginUser(this.loginForm.value).subscribe( res => { console.log(res); this.showToasterSuccess(); // 登录成功提示 // 导航逻辑已在AuthorizationService中处理,这里可以省略或添加其他逻辑 }, err => { console.error(err); const errorMessage = err.error && err.error.error ? err.error.error : 'Login failed. Please check your credentials.'; this.toastr.error(errorMessage, 'Login Error'); } ); } get Email(): FormControl { return this.loginForm.get('email') as FormControl; } get PWD(): FormControl { return this.loginForm.get('pwd') as FormControl; } ngOnInit(): void { // 可以在这里添加检查是否已登录的逻辑,如果已登录则重定向 if (this.authService.isLoggedIn) { this.router.navigate(['/home']); } } showToasterSuccess(){ this.toastr.success("Logged in successfully !!", "Enjoy!!",{ easing:"ease-in", easeTime: 1000 }); }}
总结与注意事项
通过以上修改,我们成功地实现了Angular-Flask应用中的用户数据个性化功能。核心在于确保用户ID在后端登录成功后能够正确地传递给前端,并在前端服务中存储,以便后续的API请求能够携带此ID来获取用户专属数据。
关键点回顾:
后端登录接口 (/login) 必须返回用户ID:这是前端获取当前用户身份的关键。前端 AuthorizationService 负责存储用户ID:在服务中维护用户状态(如 user.id 和 logged 状态),方便在不同组件间共享。前端组件在发起请求前获取用户ID:例如 MyReservationsComponent 在调用 makeReservation 或 getUserReservations 前,通过 authService.getUserId() 获取当前用户ID。**后端
以上就是实现Angular-Flask应用中的用户数据个性化功能的详细内容,更多请关注创想鸟其它相关文章!
版权声明:本文内容由互联网用户自发贡献,该文观点仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。
如发现本站有涉嫌抄袭侵权/违法违规的内容, 请发送邮件至 chuangxiangniao@163.com 举报,一经查实,本站将立刻删除。
发布者:程序猿,转转请注明出处:https://www.chuangxiangniao.com/p/1379757.html
微信扫一扫 
支付宝扫一扫 
