# Django Framework

Django is a powerful Python Model View Controller (MVC) framework, although in the documentation it is referred as Model - Templae -View (MTV) framework, the two terms can be used and are the same.

Because Django was developed in a fast-paced newsroom environment, it was designed to make common web development tasks fast and easy. It is very well documented, has a very active community, brings a rapid developent and deployment, there are thousands of packages, plugins and apps. 

Some very populas sites use Django as Instagram, Pinterest, NASA, National Geographic, Mozilla and The Guardian.

## Django installation

To install Django in your project or system, add the `Django` dependency or install it as usual. 

Adding `Django` to `requirements.txt` file will bring the latest version (desirable most of the time) and then: 

```
pip install -r requirements.txt
```

You can also install it manually using: 

```
pip install Django
```

Django version can be verified as follow in code: 

```
import django

print(django.get_version())
```

or using the following command: 

```
python -m django --version
```

## Creating a project

Django framework provides developers with some django-specific management functionalities like creating projects and applications, database migration and even provides a development server to run the project locally. 

To create a new django project named `mysite`, go to the desired directory and type the following command:

```
django-admin startproject mysite
```

this will create a `mysite` in your current direcory containing the following files and folders:

```
.
└── mysite
    ├── manage.py
    └── mysite
        ├── asgi.py
        ├── __init__.py
        ├── settings.py
        ├── urls.py
        └── wsgi.py
```

These files are:

* The outer **mysite/** root directory is a container for your project. Its name doesn’t matter to Django; you can rename it to anything you like.
* **manage.py**: A command-line utility that lets you interact with this Django project in various ways.
* The inner **mysite/** directory is the actual Python package for your project. Its name is the Python package name you’ll need to use to import anything inside it (e.g. mysite.urls).
* **mysite/settings.py**: Settings/configuration for this Django project. Django settings will tell you all about how settings work.
* **mysite/urls.py**: The URL declarations for this Django project; a “table of contents” of your Django-powered site.

## The development server

Let’s verify your Django project works. Change into the outer **mysite** directory, if you haven’t already, and run the following commands:

```
python manage.py runserver
```

You’ve started the Django development server, a lightweight web server written purely in Python. It is included with Django so you can develop things rapidly, without having to deal with configuring a production server – such as Apache – until you’re ready for production.

By default the server will listen for connection on the local interface, interface and port can be customized passing additional parameters to `runserver`: 

```
python manage.py runserver 8080
```

```
python manage.py runserver 0.0.0.0:8000
```

## Creating an app

Now that your environment – a “project” – is set up, you’re set to start doing work.

Each application you write in Django consists of a Python package that follows a certain convention. Django comes with an utility that automatically generates the basic directory structure of an app, so you can focus on writing code rather than creating directories.

> **Projects vs. apps**
>
> What’s the difference between a project and an app? An app is a web application that does something – e.g., a blog system, a database of public records or a small greeter app. A project is a collection of configuration and apps for a particular website. A project can contain multiple apps. An app can be in multiple projects.

Your apps can live anywhere on your Python path. For this example the let's create our app in the same directory as your manage.py file so that it can be imported as its own top-level module, rather than a submodule of mysite.

To create your app, make sure you’re in the same directory as manage.py and type this command:

```
python manage.py startapp greeter
```

That will create a directory `greeter`, your folder project should look something like this:

```
mysite
├── db.sqlite3
├── greeter                     <---- This is the app
│   ├── admin.py
│   ├── apps.py
│   ├── __init__.py
│   ├── migrations
│   │   └── __init__.py
│   ├── models.py
│   ├── __pycache__
│   │   ├── __init__.cpython-310.pyc
│   │   ├── urls.cpython-310.pyc
│   │   └── views.cpython-310.pyc
│   ├── tests.py
│   ├── urls.py
│   └── views.py
├── manage.py
└── mysite                      <--- This is the project
    ├── asgi.py
    ├── __init__.py
    ├── __pycache__
    │   ├── __init__.cpython-310.pyc
    │   ├── settings.cpython-310.pyc
    │   ├── urls.cpython-310.pyc
    │   └── wsgi.cpython-310.pyc
    ├── settings.py
    ├── urls.py
    └── wsgi.py

```

## Write your first view

Let’s write the first view. Open the file `greeter/views.py` and put the following Python code in it:

In [1]:
from django.http import HttpResponse


def index(request):
    return HttpResponse("Hello, world. You're at the greeter app index.")

This is the simplest view possible in Django. To call the view, we need to map it to a URL - and for this we need a URLconf.

To create a URLconf in the `greeter` directory, create a file called `urls.py` and include the following code:

In [None]:
from django.urls import path

from . import views

urlpatterns = [
    path('', views.index, name='index'),
]

The next step is to point the root URLconf at the greeter.urls module. In `mysite/urls.py`, add an import for `django.urls.include` and insert an `include()` in the urlpatterns list, so you have:

In [None]:
from django.contrib import admin
from django.urls import include, path

urlpatterns = [
    path('', include('greeter.urls')),
    path('admin/', admin.site.urls),
]

The idea behind include() is to make it easy to plug-and-play URLs. Since greeter is in its own URLconf `greeter/urls.py`, they can be placed under “/greet/”, or under “/fun_greet/”, or under “/polite/greets/”, or any other path root, and the app will still work.

It is now wired an index view into the URLconf. Verify it’s working with the following command:

```
python manage.py runserver
```

## Database setup

Now, open up `mysite/settings.py`. It’s a normal Python module with module-level variables representing Django settings.

By default, the configuration uses SQLite. SQLite is included in Python, so you won’t need to install anything else to support your database.

If you wish to use another database, install the appropriate database bindings and change the following keys in the DATABASES 'default' item to match your database connection settings:

* **ENGINE** – Either `django.db.backends.sqlite3`, `django.db.backends.postgresql`, `django.db.backends.mysql`, or `django.db.backends.oracle`. Other backends are also available.
* **NAME** – The name of your database. If you’re using SQLite, the database will be a file on your computer; in that case, NAME should be the full absolute path, including filename, of that file. The default value, BASE_DIR / 'db.sqlite3', will store the file in your project directory.

In case of different databases than SQLite is ussed, additional settings such as USER, PASSWORD, and HOST must be added.

### Application in `settings.py`

By default, INSTALLED_APPS contains the following apps, all of which come with Django:

* django.contrib.admin – The admin site. You’ll use it shortly.
* django.contrib.auth – An authentication system.
* django.contrib.contenttypes – A framework for content types.
* django.contrib.sessions – A session framework.
* django.contrib.messages – A messaging framework.
* django.contrib.staticfiles – A framework for managing static files.

These applications are included by default as a convenience for the common case.

Some of these applications make use of at least one database table, though, so we need to create the tables in the database before we can use them. To do that, run the following command:

```
python manage.py migrate
```

The migrate command looks at the INSTALLED_APPS setting and creates any necessary database tables according to the database settings in your `mysite/settings.py` file and the database migrations shipped with the app (we’ll cover those later). You’ll see a message for each migration it applies:

```
Operations to perform:
  Apply all migrations: admin, auth, contenttypes, sessions
Running migrations:
  Applying contenttypes.0001_initial... OK
  Applying auth.0001_initial... OK
  Applying admin.0001_initial... OK
  Applying admin.0002_logentry_remove_auto_add... OK
  Applying admin.0003_logentry_add_action_flag_choices... OK
  Applying contenttypes.0002_remove_content_type_name... OK
  Applying auth.0002_alter_permission_name_max_length... OK
  Applying auth.0003_alter_user_email_max_length... OK
  Applying auth.0004_alter_user_username_opts... OK
  Applying auth.0005_alter_user_last_login_null... OK
  Applying auth.0006_require_contenttypes_0002... OK
  Applying auth.0007_alter_validators_add_error_messages... OK
  Applying auth.0008_alter_user_username_max_length... OK
  Applying auth.0009_alter_user_last_name_max_length... OK
  Applying auth.0010_alter_group_name_max_length... OK
  Applying auth.0011_update_proxy_permissions... OK
  Applying auth.0012_alter_user_first_name_max_length... OK
  Applying sessions.0001_initial... OK

```

### Creating models

A model is the single, definitive source of information about your data. It contains the essential fields and behaviors of the data you’re storing. Django follows the [DRY Principle](https://wiki.c2.com/?DontRepeatYourself). The goal is to define your data model in one place and automatically derive things from it.

This includes the migrations, for example, migrations are entirely derived from your models file, and are essentially a history that Django can roll through to update your database schema to match your current models.

In the greeter app, users that want to be greeted will have to register first, using a name and an honorific way to reffer to them during the greeting process. So the app will contain one model: `User`. A `User` has a name and an honorific. 

Edit the `greeter/models.py` file so it looks like this:

In [None]:
from django.db import models


class User(models.Model):
    name = models.CharField(max_length=200)
    title = models.CharField(max_length=200, default='Mx')

* Each model is represented by a class that subclasses `django.db.models.Model`. Each model has a number of class variables, each of which represents a database field in the model.
* Each field is represented by an instance of a Field class – e.g., CharField for character fields and DateTimeField for datetimes. This tells Django what type of data each field holds.
* The name of each Field instance is the field’s name, in machine-friendly format. You’ll use this value in your Python code, and your database will use it as the column name.
* A Field can also have various optional arguments; in this case, we’ve set the default value of honorific to "Mx".

### Activating models

That small bit of code gives Djando a los of information, with it Dango is able to: 

* Create a database schema for this app. 
* Create a Python database-access API for accessing `User` objects. 

But first we need to tell our project that the **greeter** app is installed. Since apps in Djando are "pluggable", you can use this app in multiple projects, and distribute it, because they don't have to be tied to a given Django installation. 

To install the app in the project is enough to add a reference to the app's configuration class in the `INSTALLED_APPS` setting on the `mysite/settings.py`. To do that, use the `GreeterConfig` class in the `greeter/apps.py` file, so its dotter path is `greeter.apps.GreeterConfig`.

In [1]:
INSTALLED_APPS = [
    'greeter.apps.GreeterConfig',
    'django.contrib.admin',
    'django.contrib.auth',
    'django.contrib.contenttypes',
    'django.contrib.sessions',
    'django.contrib.messages',
    'django.contrib.staticfiles',
]

Now Django knows to include the greeter app. Let's run another command: 

```
python manage.py makemigrations greeter
```

By running `makemigration` you are telling Djando that you've made some changes to your models. 

Migrations are how Djando stores changes to your models (and thus the database schema) - they are files on disk located inside the app's folder under the `migration` directory.

There’s a command that will run the migrations for you and manage your database schema automatically - that’s called `migrate`, and we’ll come to it in a moment - but first, let’s see what SQL that migration would run. The `sqlmigrate` command takes migration names and returns their SQL:

```
python manage.py sqlmigrate greeter 0001
```

You can also run:

```
python manage.py check
```

This checks for any problems in your project without making migrations or touching the database.

Now, run `migrate` again to create those model tables in your database:

```
python manage.py migrate
```

### Playing with the API

Django provides you with an interactive shell session that you can use to play around with the databas API. To invoke the Python shell, use this command: 

```
python manage.py shell
```

Once you are in the shell, you can explore the database API:

In [None]:
from greeter.model import User

List all users, but no users are in the system yet

In [None]:
User.objects.all()

Create a new user, give it a name; we can ignore the title since it has a default value. You'd create a regular object:

In [None]:
u = User(name='Samir')

Save the object into the database. You have to call `save()` explicitly

In [None]:
u.save()

Now it has an id

In [None]:
u.id, u.name, u.title

Let's change the not so expressive representation as text the `User` object has `<User: User object (1)>`. Can be fixed by editing the `User` model and adding a `__str__()` method:

In [None]:
from django.db import models


class User(models.Model):
    # ...
    def __str__(self):
        return ' '.join((self.title, self.name))

It’s important to add `__str__()` methods to your models, not only for your own convenience when dealing with the interactive prompt, but also because objects’ representations are used throughout Django’s automatically-generated admin.

Let's also all some custom method to this model:

In [None]:
from django.db import models


class User(models.Model):
    def is_male(self):
        return self.title.lower() in ['mr', 'master']
    
    def is_female(self):
        return self.title.lower() not in ['mx'] and not self.is_male()

Save these changes and start a new Python interactive shell again. 

Django provides a rich database lookup API that's entirely driven by keywords arguments:

In [None]:
User.objects.filter(id=1)

In [None]:
User.object.filter(name__startswith='S')

In [None]:
u = User.objects.get(name='Samir')
u.is_male()
u.is_female()

In [None]:
u.delete()

## Introducing Django Admin

Generating admin sites for your staff or clients to add, change, and delete content is tedious work that doesn’t require much creativity. For that reason, Django entirely automates creation of admin interfaces for models.

Django was written in a newsroom environment, with a very clear separation between “content publishers” and the “public” site. Site managers use the system to add news stories, events, sports scores, etc., and that content is displayed on the public site. Django solves the problem of creating a unified interface for site administrators to edit content.

The admin isn’t intended to be used by site visitors. It’s for site managers.

### Creating an admin user

First we’ll need to create a user who can login to the admin site. Run the following command:

```
python manage.py createsueruser
```

Enter your desired username, email address and the final step is to enter your password. 

The django admin site is activated by default. Start the development server end explore it. 

```
python manage.py runserver
```

Now open the bowser and go to "/admin/  on your locan domain - e.g., http://localhost:8000/admin


## Make the greeter app modifiable in the admin

As can be noticeable the greeter app is not displayed in the admin page. It is necesary to tell the admin that the `User` objects have an admin interface. To do that, open the `greeter/admin.py` file, and edit it to look like this:

In [None]:
from django.contrib import admin 

from .models import User

admin.site.register(User)

## More on views

Each view is responsible for doing one of two things: returning an HttpResponse object containing the content for the requested page, or raising an exception such as Http404. The rest is up to you.

Your view can read records from a database, or not. It can use a template system such as Django’s – or a third-party Python template system – or not. It can generate a PDF file, output XML, create a ZIP file on the fly, anything you want, using whatever Python libraries you want.

All Django wants is that HttpResponse. Or an exception.

Because it’s convenient, let’s use Django’s own database API, which was covered already. Here’s one stab at a new index() view, which displays 5 users registered in the system, separated by commas, ordered by their name:

In [None]:
from django.http import HttpResponse

from .models import User


def index(request):
    users = User.objects.order_by('-name')[:5]
    output = ', '.join([f'{u.title} {u.name}' for u in users])
    return HttpResponse(output)

There is a problem here, though: the page design is hard-coded in the view. If you want to change the way the page looks, you'll have to edir Python code. Django provides a **template system** to separate the design from Python by creating a template that the view can use. 

First, create a directory called `templates` in your `greeter` directory. Django will look for templates in there.

Your project’s `TEMPLATES` setting describes how Django will load and render templates. The default settings file configures a DjangoTemplates backend whose `APP_DIRS` option is set to True. By convention DjangoTemplates looks for a “templates” subdirectory in each of the `INSTALLED_APPS`.

Within the templates directory you have just created, create another directory called `greeter`, and within that create a file called index.html. In other words, your template should be at `greeter/templates/greeter/index.html`. Because of how the app_directories template loader works as described above, you can refer to this template within Django as `greeter/index.html`.

Put the following code in that template:

In [None]:
{% if users %}
    <ul>
    {% for user in users %}
        <li>{{user.title}} {{user.name}}</li>
    {% endfor %}
    </ul>
{% else %}
    <p>No user registered</p>
{% endif %}

Now let's update the index view to use the template:

In [None]:
from django.http import HttpResponse
from django.template import loader

from .models import User


def index(request):
    users = User.objects.order_by('-name')[:5]
    template = loader.get_template('greeter/index.html')
    context = {
        'users': users
    }
    return HttpResponse(template.render(context, request))

## A shortcut: render()

It's very common idiom to load a template, fill a context and return an HttpResponse object with the result of the template. Django provides a shortcut. Here's the full `index()` view, rewritten:

In [None]:
from django.shortcuts import render

from .models import User


def index(request):
    users = User.objects.order_by('-name')[:5]
    context = {
        'users': users
    }
    return render(request, 'greeter/index.html', context)

## Working with Forms

To accept new user registration, the application will need to provide an HTML form to capture the name and the title of the user. In a very simplified way, the required form should look something like this:

```
<form action="/register" method="post">
    <label for="id_name">Your name:</label>
    <input type="text" name="name">
    <label for="id_title">Title:</label></th>
    <input type="text" name="title" id="id_title">
    <input type="submit" value="Register">
</form>
```

Once the "Register" button is pressed, the data will be sent to the `/register` URL for validation and then create the user in the database. Once the user is correctly registered, the application will redirect, finally, to the greeting view.

The following is the new URLconf for the greeter app:

In [None]:
from django.urls import path

from . import views

urlpatterns = [
    path('', views.index, name='index'),
    path('register', views.register, name='register'),
    path('greet/<int:user_id>', views.greet, name='greet')
]

The required form could be written in HTML as before, but that way the developer will be left with several functional and not functional work to do like implementing validations over the provided data or dealing with well known security issues. To deal with all this in a very transparent and declarative way, Django provides an way to define forms.

Create a new Python module under the `greeter` directory of the app named `forms.py` and add the following code:

In [None]:
from django import forms


class RegistrationForm(forms.Form):
    name = forms.CharField(label='Your name', min_length=2)
    title = forms.CharField(label="Title", help_text="Mx will be used if not provided", required=False)


This defines a Form class with two fields `name` and `title`. Fields defined human friendly labels and some constrains:

* `name` field should be at least 2 characters (min_length)
* `name` field is implicitly required
* `title` is not required

Now let's create the views to handle form request and response. Add these views to the `greeter\views.py` module:

In [None]:
def register(request):
    if request.method == 'POST':
        form = RegistrationForm(request.POST)
        if form.is_valid():
            name = form.cleaned_data['name']
            title = form.cleaned_data['title']
            new_user = User(name=name)
            if title:
                new_user.title = title
            new_user.save()
            return HttpResponseRedirect(reverse('greet', args=(new_user.id,)))
    else:
        form = RegistrationForm()

    context = {'form': form}
    return render(request, 'greeter/register.html', context)


def greet(request, user_id):
    u = User.objects.get(pk=user_id)
    return render(request, 'greeter/greet.html', {'user': u})

There is a lot to unpack in these views, let's see what's happening:

* `register` view handles both HTTP POST and GET methods. Being POST the request with the form data, and GET the request to render the form
* Notice the method `is_valid()` from the form. This will perform all the validations declared in the form definition
* Notice the data is accessed via the `cleaned_data` attribute of the form (is a dict). Each field is responsible not only for its data validation but also "cleaning" it, resulting in a consistent output.
* Once the user is correctly registered the `register` view will pass the control to the `geet` view. Notice the use of the `reverse()` function passed to the `HttpResponseRedirect`. This function will use the URLconf to locate the correct URL by name, avoiding hard coded URLs in the code.

What's missing now are the templates to register and greet. Create a new `register.html` file inside the  `templates\greeter` directory inside the greeter app with the following content:

In [None]:
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <title>Registration form</title>
</head>
<body>
<form action="{% url 'register' %}" method="post">
    {% csrf_token %}
    {{ form }}
    <input type="submit" value="Register">
</form>
</body>
</html>

To avoid hard coding URLs in the templates the `{% url <URL_NAME> %}` placeholder can be used to locate the URL named as `<URL_NAME>` in URLconf.

The `{% csrf_token %}` is there to protect your application from [Cross Site Request Forgery](https://docs.djangoproject.com/en/4.1/ref/csrf/) attacks.

Now create a new `greet.html` file in the same folder with the following content:

In [None]:
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <title>Yo really want to be greeted right?</title>
</head>
<body>
  <h1>Hello {{user.title}} {{user.name}}</h1>
</body>
</html>

This is the template that will finally greet the user upon registration