python学习-- Django Ajax CSRF 认证
Posted 阿Q啊
tags:
篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了python学习-- Django Ajax CSRF 认证相关的知识,希望对你有一定的参考价值。
使用 jQuery 的 ajax 或者 post 之前 加入这个 js 代码:http://www.ziqiangxuetang.com/media/django/csrf.js
/*====================django ajax ======*/ jQuery(document).ajaxSend(function(event, xhr, settings) { function getCookie(name) { var cookieValue = null; if (document.cookie && document.cookie != \'\') { var cookies = document.cookie.split(\';\'); for (var i = 0; i < cookies.length; i++) { var cookie = jQuery.trim(cookies[i]); // Does this cookie string begin with the name we want? if (cookie.substring(0, name.length + 1) == (name + \'=\')) { cookieValue = decodeURIComponent(cookie.substring(name.length + 1)); break; } } } return cookieValue; } function sameOrigin(url) { // url could be relative or scheme relative or absolute var host = document.location.host; // host + port var protocol = document.location.protocol; var sr_origin = \'//\' + host; var origin = protocol + sr_origin; // Allow absolute or scheme relative URLs to same origin return (url == origin || url.slice(0, origin.length + 1) == origin + \'/\') || (url == sr_origin || url.slice(0, sr_origin.length + 1) == sr_origin + \'/\') || // or any other URL that isn\'t scheme relative or absolute i.e relative. !(/^(\\/\\/|http:|https:).*/.test(url)); } function safeMethod(method) { return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method)); } if (!safeMethod(settings.type) && sameOrigin(settings.url)) { xhr.setRequestHeader("X-CSRFToken", getCookie(\'csrftoken\')); } }); /*===============================django ajax end===*/
以上是关于python学习-- Django Ajax CSRF 认证的主要内容,如果未能解决你的问题,请参考以下文章
Python全栈100天学习笔记Day43 Django静态资源与Ajax请求
Python全栈100天学习笔记Day43 Django静态资源与Ajax请求