Search code examples
pythondjangoauthenticationdjango-generic-views

Django - using generic login view not working

EDIT: the view now does log me in when I enter a correct username and password, but doesn't return any errors when I enter incorrect username and passwords. I am using the generic login view provided by Django. This is my login.html template:

<body>
    <h1>User Login</h1>

    {% if form.has_errors %}
        <p>Your username and password did not match. 
        Please try again.</p>
    {% else %}
        <form method="post" action=" . ">{% csrf_token %}
            <p><label for="id_username">Username:</label>
            {{ form.username }}</p>

            <p><label for="id_password">Password:</label>
            {{ form.password }}</p>

            <input type="hidden" name="next" value="/" />
            <input type="submit" value="login" />
        </form>
    {% endif %}
</body>

Now, I am following the tutorial in the book called "Pact Publishing. Learning Website Development with Django". The view never returns 

form.has_errors

even though I purposely submit an incorrect username and password. It just keeps returning me to the same page after I click submit. Also, according to the HTML book I read, it said that the 'action' attribute in the form is the URL of the page on the server that will retrieve the information. Is that why it isn't working? Because my

action=" . "

?

EDIT: the view is the generic login view:

@sensitive_post_parameters()
@csrf_protect
@never_cache
def login(request, template_name='registration/login.html',
          redirect_field_name=REDIRECT_FIELD_NAME,
          authentication_form=AuthenticationForm,
          current_app=None, extra_context=None):
    """
    Displays the login form and handles the login action.
    """
    redirect_to = request.REQUEST.get(redirect_field_name, '')
    if request.method == "POST":
        form = authentication_form(data=request.POST)
        if form.is_valid():

            # Ensure the user-originating redirection url is safe.
            if not is_safe_url(url=redirect_to, host=request.get_host()):
                redirect_to = resolve_url(settings.LOGIN_REDIRECT_URL)

            # Okay, security check complete. Log the user in.
            auth_login(request, form.get_user())

            if request.session.test_cookie_worked():
                request.session.delete_test_cookie()

            return HttpResponseRedirect(redirect_to)
    else:
        form = authentication_form(request)

    request.session.set_test_cookie()

    current_site = get_current_site(request)

    context = {
        'form': form,
        redirect_field_name: redirect_to,
        'site': current_site,
        'site_name': current_site.name,
    }
    if extra_context is not None:
       context.update(extra_context)
    return TemplateResponse(request, template_name, context,
                            current_app=current_app)

and my urls.py is just

url(r'^$', main_page),
url(r'^user/(\w+)/$', user_page), 
url(r'^login/$', login),
Solution

  • Ah, found the answer over here: form.has_errors tag not working

    form.has_errors

    was replaced with 

    form.errors