# Class 30 

## Tables of Contents
1) [User Registration](#user-registration)
1) [User Login](#user-login)
1) [Cookies](#cookies)


# Notes for Today

**Built in User**

`from django.contrib.auth.models import User` 

Then we could make a registration form with inputs 

then we make a register function in your views:

```python

def user_registration(request):
    if request.method == 'POST':
        first_name = request.POST['firstName']
        last_name = request.POST['lastName']
        email = request.POST['email']
        password = request.POST['password']
        username = request.POST['username']

        user_exists = User.objects.filter(username=username)
        if user_exists.exists():
            return redirect('register')
        # creating new user
        user = User.objects.create_user(first_name=first_name,
                                 last_name=last_name,
                                 username=username,
                                 password=password,
                                 email=email)
        user.save()
        return render(request, 'login.html')
    return render(request, 'user_registration_form.html')

```

So we grab all our fields and then check if the user exists if not we create our user and **save** it 


---

For **Login**

We create a login html that has two fields and we create a login view 

```python


def login_fun(request):
    if request.method == 'POST':
        password = request.POST['password']
        username = request.POST['username']
        if not User.objects.filter(username=username).exists():
            return redirect('login')
        user= authenticate(username=username, password=password)

        if user is None:
            return redirect('register')
        else:
            login(request, user)
            return redirect('homepage')
    return render(request, 'login.html')


```

This authenticate function is from `from django.contrib.auth import authenticate, login`


---

Cookies 

Store information in a client browser and we're able to use it 

`set_cookie()`
`request.COOKIES['key']`

We create an `HttpResponse` object which has access to `set_cookie(cookie_name, cookie_value, max_age=number_of_seconds)`

To grab it you access it through the `request` so `cookie_value = request.COOKIES['cookie_name']`

We could also remove a cookie through response:
`response.delete_cookie('cookie_name')`

---

Register --> Home Page --> Logout Button (because they should be logged in) --> clicked logged out will go to Login pAge

HTTP is stateless

---

Django Session

Stores in database no server-side 

**implemented** by MIDDLEWARE *SessionMIDDLEWARE* which is like a filter. Before going to the server, Middleware checks conditions then goes to the server.



# Summary 

## Tables of Contents
1) [User Registration](#user-registration)
1) [User Login](#user-login)
1) [Cookies](#cookies)

---

## User Registration

So we create a **url path** for user registration in *project_name/urls.py*

*project_name/urls.py*
```python
from django.contrib import admin
from django.urls import path
# import views 
from ecart import views

urlpatterns = [
    path('admin/', admin.site.urls),
    path('', views.demo2, name='homepage'),
    path('register/', views.user_registration, name='register'),
]

```

We have a user registration view called **user_registration** 

*app_name/views.py*
```python

def user_registration(request):
    # Checking if we're posting 
    if request.method == 'POST':
        # Grab names from our input field
        # for an example:
        # <input type='text' name='firstName'>
        first_name = request.POST['firstName']
        last_name = request.POST['lastName']
        email = request.POST['email']
        username = request.POST['username']
        password = request.POST['password']

        # Checking if our user exsists
        user = User.objects.filter(username=username)
        if user.exists():
            return redirect('register')

        # Create the actual user in our database 
        user = User.objects.create_user(first_name=first_name,
                                 last_name=last_name,
                                 username=username,
                                 password=password,
                                 email=email)

        # Always have to save the user 
        user.save()
    # We always have to make sure to return a render where the method ISN'T POST
    return render(request, 'user_registration_form.html')
        
```

Here we so a `user_registration_form.html`

which basically consist of a **form** field, **input** fields with names, a **csrf** token and **submit** button which could be found [here](../../../brilliant_django/ecart/templates/user_registration_form.html)


---

## User Login

Login is the same process with creating a **url path** and for it's view we're using two major things from `django.contrib.auth`
1) `authenticate`
1) `login`

so: `from django.contrib.auth import authenticate, login`

```python


def login_fun(request):
    if request.method == 'POST':
        password = request.POST['password']
        username = request.POST['username']
        if not User.objects.filter(username=username).exists():
            return redirect('login')
        user= authenticate(username=username, password=password)

        if user is None:
            return redirect('register')
        else:
            login(request, user)
            return redirect('homepage')
    return render(request, 'login.html')


```

We use `authenticate()` to check the username and password then pass that **object** to our `login()` function

Now we need to create a similar form to our **registration** html template like [so](../../../brilliant_django/ecart/templates/login.html)

---

## Cookies

HTTP is **stateless** doesn't remember your data if you run around to different pages.

Cookies help with that issue **storing data on the client side**

We use `set_cookie(cookie_name, value, max_age)` with an `HttpResponse` object.

To retrieve a cookie: `request.COOKIES['cookie_name']`
To remove a cookie: `response.delete_cookie('cookie_name')`