如何使用Flask-Security实现用户认证和授权

pip install Flask-Security

from flask import Flaskfrom flask_sqlalchemy import SQLAlchemyfrom flask_security import Security, SQLAlchemyUserDatastore, UserMixin, RoleMixinapp = Flask(__name__)app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///database.db'app.config['SECRET_KEY'] = 'secret_key'db = SQLAlchemy(app)class User(db.Model, UserMixin):    id = db.Column(db.Integer, primary_key=True)    email = db.Column(db.String(255), unique=True)    password = db.Column(db.String(255))class Role(db.Model, RoleMixin):    id = db.Column(db.Integer, primary_key=True)    name = db.Column(db.String(80), unique=True)    description = db.Column(db.String(255))user_datastore = SQLAlchemyUserDatastore(db, User, Role)security = Security(app, user_datastore)

from flask_migrate import Migratemigrate = Migrate(app, db)if __name__ == '__main__':    app.run()

flask db initflask db migrateflask db upgrade

from flask_security import login_required, LoginForm, RegisterForm, current_user@app.route('/')@login_requireddef home():    return 'Hello, {}!'.format(current_user.email)@app.route('/login', methods=['GET', 'POST'])def login():    form = LoginForm()    if form.validate_on_submit():        user = User.query.filter_by(email=form.email.data).first()        if user and user.password == form.password.data:            login_user(user)            return redirect(url_for('home'))    return render_template('login.html', form=form)@app.route('/register', methods=['GET', 'POST'])def register():    form = RegisterForm()    if form.validate_on_submit():        user = User(email=form.email.data, password=form.password.data)        db.session.add(user)        db.session.commit()        return redirect(url_for('login'))    return render_template('register.html', form=form)

from flask_security import roles_required@app.route('/admin')@roles_required('admin')def admin():    return 'Admin Page'