那些遇到过的问题

Django 和 Axios 禁止(CSRF 令牌丢失或不正确。)

use*_*363 1 javascript python django django-rest-framework axios

我在尝试将 Django 服务器连接到 axios 时遇到问题。这应该是一个简单的修复,但我被困住了!

我从 Django 服务器收到此错误:

[23/Aug/2021 19:25:36] "POST /subscription HTTP/1.1" 403 2519
Forbidden (CSRF token missing or incorrect.): /subscription
Run Code Online (Sandbox Code Playgroud)

这是我正在使用的方法:

const newsletterSignUp = async function (email) {
  try {
    let res = await axios({
      method: "post",
      url: "http://127.0.0.1:8000/subscription",
      data: { email: email },
    });

    return res;
  } catch (err) {
    console.error(err);
    return err;
  }
Run Code Online (Sandbox Code Playgroud)

我尝试添加自定义标头,但我认为名称中的破折号引起了问题,而且我不知道如何解决它。

headers: { set-cookie: "csrftoken=ee95ec102d0d884ea95eb09cb421cdd8382aed79" }
Run Code Online (Sandbox Code Playgroud)

我知道我的 Django 代码很好,因为它可以在浏览器中运行。我已附上它以供参考。

索引.html

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="UTF-8" />
    <title>Email subscriptions</title>

    <!-- Bootstrap -->
    <link
      rel="stylesheet"
      href="https://cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/css/bootstrap.min.css"
    />
  </head>

  <body class="container py-4">
    <!--Email subscription Form -->
    <form method="post" action="{% url 'subscription' %}">
      {% csrf_token %}

      <div class="form-group">
        <label>Subscribe to get the latest Articles</label> <br />
        <input
          type="email"
          name="email"
          placeholder="Enter Email to Subscribe"
        />
        <button class="btn btn-info" type="submit">Submit</button>
      </div>
    </form>

    <!-- message if email is sent -->
    {% if messages %} {% for message in messages %}
    <div class="my-5 alert alert-success">
      <h5 class="m-0">{{ message }}</h5>
    </div>
    {% endfor %} {% endif %}
  </body>
</html>
Run Code Online (Sandbox Code Playgroud)

urls.py

urlpatterns = [
    path('', include(router.urls)),
     path("subscription", views.subscription, name="subscription"),
]
Run Code Online (Sandbox Code Playgroud)

视图.py

from django.shortcuts import render

# Create your views here.
from rest_framework import generics
from rest_framework import viewsets
from django.http import HttpResponse

from rest_framework.response import Response

from django.contrib import messages
from django.conf import settings
from mailchimp_marketing import Client
from mailchimp_marketing.api_client import ApiClientError

# Mailchimp Settings
api_key = settings.MAILCHIMP_API_KEY
server = settings.MAILCHIMP_DATA_CENTER
list_id = settings.MAILCHIMP_EMAIL_LIST_ID


# Subscription Logic
def subscribe(email):
    """
     Contains code handling the communication to the mailchimp api
     to create a contact/member in an audience/list.
    """

    mailchimp = Client()
    mailchimp.set_config({
        "api_key": api_key,
        "server": server,
    })

    member_info = {
        "email_address": email,
        "status": "subscribed",
    }

    try:
        response = mailchimp.lists.add_list_member(list_id, member_info)
        print("response: {}".format(response))
    except ApiClientError as error:
        print("An exception occurred: {}".format(error.text))

        # Views here.

def subscription(request):
    if request.method == "POST":
        email = request.POST['email']
        subscribe(email)                    # function to access mailchimp
        messages.success(request, "Email received. thank You! ") # message

    return render(request, "index.html")
Run Code Online (Sandbox Code Playgroud)

这是我在settings.py中的权限

REST_FRAMEWORK = {

    'DEFAULT_PERMISSION_CLASSES': [
       'rest_framework.permissions.AllowAny'
    ],

    'DEFAULT_AUTHENTICATION_CLASSES': (
        'rest_framework.authentication.SessionAuthentication',
        'rest_framework.authentication.BasicAuthentication',
    ),
}
Run Code Online (Sandbox Code Playgroud)

任何直升机都能救我的命!

Ven*_*nga 5

这非常简单,但我花了几个小时才找到。至关重要的是指定axios.defaults-

function post_email() {
  axios.defaults.xsrfCookieName = 'csrftoken'
  axios.defaults.xsrfHeaderName = "X-CSRFTOKEN"
  axios.post(
    '{% url 'email_subscribe' %}', {
      email: 'fred@gmail.com'
    })
    .then(function (response) {
      console.log(response);
    })
    .catch(function (error) {
      console.log(error);
    });
}
Run Code Online (Sandbox Code Playgroud)

归档时间:

查看次数:

1503 次

最近记录:

3 年,7 月 前
相关归档
删除JSON属性 311
我可以直接从GitHub运行HTML文件,而不仅仅是查看它们的来源吗? 294
Python中最快(访问)类似结构的对象是什么? 75
如何暂时禁用jQuery中的单击处理程序? 64
如何使用pip解决ReadTimeoutError:HTTPSConnectionPool(host ='pypi.python.org',port = 443)? 60
所有属性的JavaScript getter 48
如何在Javascript中手动设置REFERER标头? 45
django工厂男孩工厂与OneToOne的关系及相关领域 13
Docker + Django + Postgres附加组件+ Heroku 9
获取 djangobulk_create 中保存的记录总数 9
难疑归档
如何从JavaScript对象中删除属性? 5813
REST中的PUT与POST 5227
正则表达式匹配不包含单词的行? 4121
@staticmethod和@classmethod有什么区别? 3360
我怎么知道通过jQuery选择了哪个单选按钮? 2583
NPM vs. Bower vs. Browserify vs. Gulp vs. Grunt vs. Webpack 1811
.gitignore和.gitkeep有什么区别? 1776
每个'循环的Java'如何工作? 1446
将文本粘贴到vim时关闭自动缩进 1119
Vim中的remap,noremap,nnoremap和vnoremap映射命令有什么区别? 1045