→from rest_framework import status

Imports the status module from rest_framework, which provides useful HTTP status codes like HTTP_200_OK, HTTP_201_CREATED, HTTP_400_BAD_REQUEST, etc.

→from rest_framework.response import Response

Imports the Response class used to create HTTP responses in Django REST Framework (DRF).

It formats the response as JSON by default.

→from rest_framework.decorators import api_view, permission_classes

api_view: A decorator that restricts allowed request methods to a particular view. For example, if you pass [‘POST’], only POST requests will be allowed.

permission_classes: A decorator used to override the default permission settings for a particular view.

→from rest_framework.permissions import AllowAny

Imports the AllowAny permission class, which grants unrestricted access to a view.

Without this, the global IsAuthenticated permission would block unauthenticated users from accessing this view.

→from django.contrib.auth.models import User

Imports the User model from Django’s authentication system.

You will use this model to create and query user accounts.

→from rest_framework.authtoken.models import Token

Imports the Token model from rest_framework.authtoken.

A Token object is created for each user and serves as an authentication credential.

 →View Function: register()

@api_view([‘POST’])

@permission_classes([AllowAny])

@api_view([‘POST’]): Ensures the view only accepts POST requests.

→@permission_classes([AllowAny]): Overrides the global IsAuthenticated permission to allow unauthenticated users to access this view.

Necessary because this view handles user registration, which requires open access.

→def register(request):

Defines the register function, which accepts a request object as a parameter.

The request object contains information about the HTTP request sent by the client.

    →username = request.data.get(‘username’)

    →password = request.data.get(‘password’)

Extracts the username and password from the request body.

request.data is a DRF feature that works for POST, PUT, and PATCH requests, parsing the incoming JSON data.

  →if not username or not password:

        return Response({“error”: “Username and password are required.”}, status=status.HTTP_400_BAD_REQUEST)

Validates that both username and password are provided.

Returns a 400 Bad Request response if either field is missing.

  →if User.objects.filter(username=username).exists():

        return Response({“error”: “User with this username already exists.”}, status=status.HTTP_400_BAD_REQUEST)

Checks if a user with the given username already exists in the database.

Returns a 400 Bad Request response if the username is already taken.

   → user = User.objects.create_user(username=username, password=password)

Creates a new user in the database using Django’s create_user() method.

This method automatically hashes the password before saving it.

   → token, created = Token.objects.get_or_create(user=user)

Generates a token for the newly created user using Token.objects.get_or_create().

If the user already has a token, it returns the existing one.

Otherwise, it creates a new token.

  →return Response({

        “message”: “User registered successfully.”,

        “token”: token.key

    }, status=status.HTTP_201_CREATED)

Returns a JSON response with a success message and the token associated with the user.

The status code 201 CREATED indicates that the registration process was successful.