tags:

views:

71

answers:

2
Q: 

Why is checking if two passwords match in Django so complicated?

Am I doing something wrong, or is this seriously what the developers expect me to write every time I want to check if two fields are the same?

def clean(self):
    data = self.cleaned_data
    if "password1" in data and "password2" in data:
        if data["password1"] != data["password2"]:
            self._errors["password2"] = self.error_class(['Passwords do not match.'])
            del data['password2']    
    return data

And why do I have to validate that the username is unique?

def clean_username(self):
    data = self.cleaned_data['username']
    if User.objects.filter(username=data).exists():
        raise ValidationError('Username already taken.')
    return data

It's a ModelForm. It should already know there's a unique constraint?

A: 

You might want to add an else: part for the first if. Currently the function returns the data without setting any errors even if one of the passwords are absent - is that the intended behavior?

else:
    self._errors["password"] = self.error_class(['One or both of the passwords not found'])

if "password1" in data and "password2" in data: This makes sure that both passwords are present. Without this line, you'll get an error in the next line where you read data[password1] and data[password2] if either of them are not present.

Next three lines compare the passwords and sets the appropriate error message - that's required, isn't it?

As they say, make things as simple as possible, not anymore.

Amarghosh  2010-07-12 06:14:08
I don't *think* that's necessary... if either password is absent, that means there's already been an error, doesn't it? I don't really need to throw a second one. And yes, this could get ridiculously simpler. How about when defining the fields, I write `password2 = PasswordField(validate=EqualTo('password1'))`? It should be able to figure out the rest.
Mark  2010-07-12 06:21:57
+2  A: 

Firstly, are you seriously complaining about four lines of boiler-plate code? If it really bothers you, create a PasswordForm class that contains that clean logic and sublass it for your own forms as necessary.

Secondly, you don't have to validate unique constraints manually. As you say, the ModelForm does it for you.

Edit after comment

This 'weird syntax' is because checking that two password fields match is a different flow than the normal scheme of things. For a start, you're checking in the main clean method rather than the field-specific clean_myfield. If it had been the latter, you just raise an exception and Django does indeed remove the field data.

So no, this isn't 7 lines on every form - see my note about subclassing - and it certainly isn't 7 lines times multiple fields, because you don't want to do this for any other type of field.

Daniel Roseman  2010-07-12 06:33:41
Well something's screwing up somewhere then..because I just got a duplicate key error. I just wanted to bitch a little bit because I'm getting sick of this project :(
Mark  2010-07-12 06:38:39
And it's 7 lines... of weird syntax. Why do I have to check if the data is in the dict and then delete it? Isn't that a bit of an odd design? There's already an error list, it can check that if it wants to know if there's been an error. And I should be able to just append another one, without really caring it's already got an error. And then why return data? I'm already manipulating self.cleaned_data, it doesn't really seem necessary to return anything. If they passed me in the dict, then maybe.
Mark  2010-07-12 06:45:17
And it isn't even just 7 lines... it's 7 lines on every single freaking form, multiplied by several fields.
Mark  2010-07-12 06:45:59
Mark: it should not be 7 lines on every form. Read Daniel's advice and create PasswordForm class where you can store this logic.
Mark van Lent  2010-07-12 06:51:10
@Daniel: Well, it has to be in the `clean` method because I'm comparing it to another field, no? And when I say "times multiple fields" I'm not referring specifically to "check if two fields are the same" but any sort of logic that is slightly out of the norm. I'm saying validators like "check unique" and "check if equal" should be built into the framework. Anywho.. that was yesterday. I got it out of my system now. Thank you.
Mark  2010-07-13 01:30:52

related questions

Django: Print url of view without hardcoding the url
Django Calendar Widget?
Can the HTTP version or headers affect the visual appearance of a web page?
Project design / FS layout for large django projects
Extending the User model with custom fields in Django
How to generate urls in django
Always including the user in the django template context
Screencasts for Django/Python?
Using Django time/date widgets in custom form
How do I add data to an existing model in Django?
Setup django with WSGI and apache
Altering database tables in Django
Django Templates and variable attributes.
Django ImageField core=False in newforms admin
How can I render a tree structure (recursive) using a django template?
Cleanest & Fastest server setup for Django
Unicode vs UTF-8 confusion in Python / Django?
Does Hostmonster support Django
Specifying a mySQL ENUM in a Django model
Represent Ordering in a Relational Database
updating an auto_now DateTimeField in a parent model w/ Django
Version track, automate DB schema changes with django
Learning Ruby on Rails any good for Grails?
What Hosting Service is best for Django applications?
Class views in Django