Fatal编程技术网
  • django/
  • Django authlib不匹配authorize\u access\u令牌上的hingstate错误

Django authlib不匹配authorize\u access\u令牌上的hingstate错误

django

Django authlib不匹配authorize\u access\u令牌上的hingstate错误,django,authlib,Django,Authlib,我对django authlib客户端有一些问题。在重定向url上,authorize_access_token raise mistchingstateError() 这是我的代码: def login(request): # google = oauth.create_client('google') authservice = oauth.create_client('authservice') redirect_uri = 'http://localhost:8

我对django authlib客户端有一些问题。在重定向url上,authorize_access_token raise mistchingstateError()

这是我的代码:

def login(request):
    # google = oauth.create_client('google')

    authservice = oauth.create_client('authservice')
    redirect_uri = 'http://localhost:8050/authorize'

    authservice.save_authorize_data(request)

    return authservice.authorize_redirect(request, redirect_uri)


def authorize(request):
    token = oauth.authservice.authorize_access_token(request)
    userinfo = oauth.authservice.parse_id_token(request, token)
    resp = oauth.authservice.userinfo(token=token)
    return JsonResponse(token, safe=False)
以及stacktrace:

Internal Server Error: /authorize/
app_1  | Traceback (most recent call last):
app_1  |   File "/usr/local/lib/python3.7/site-packages/django/core/handlers/exception.py", line 34, in inner
app_1  |     response = get_response(request)
app_1  |   File "/usr/local/lib/python3.7/site-packages/django/core/handlers/base.py", line 115, in _get_response
app_1  |     response = self.process_exception_by_middleware(e, request)
app_1  |   File "/usr/local/lib/python3.7/site-packages/django/core/handlers/base.py", line 113, in _get_response
app_1  |     response = wrapped_callback(request, *callback_args, **callback_kwargs)
app_1  |   File "/opt/project/access/views.py", line 141, in authorize
app_1  |     token = oauth.authservice.authorize_access_token(request)
app_1  |   File "/usr/local/lib/python3.7/site-packages/authlib/integrations/django_client/integration.py", line 66, in authorize_access_token
app_1  |     params = self.retrieve_access_token_params(request)
app_1  |   File "/usr/local/lib/python3.7/site-packages/authlib/integrations/base_client/base_app.py", line 144, in retrieve_access_token_params
app_1  |     params = self._retrieve_oauth2_access_token_params(request, params)
app_1  |   File "/usr/local/lib/python3.7/site-packages/authlib/integrations/base_client/base_app.py", line 126, in _retrieve_oauth2_access_token_params
app_1  |     raise MismatchingStateError()
app_1  | authlib.integrations.base_client.errors.MismatchingStateError: mismatching_state: CSRF Warning! State not equal in request and response.
如果有人对如何修复它有想法,那就太好了

谢谢大家:)

我相信可能发生了错误,因为您的应用程序中配置的url与
不同http://localhost:8050/authorize“

检查并验证它们是否相同。另外,请参见。

配置的url相同。我正在尝试为我的公司提供程序获取令牌,以便oauth提供程序不在我的本地主机上运行。问题是,当重定向url片段引发错误时,我可以在其上看到标记。这很奇怪,可能是防火墙的问题。