Python 即使在发送之后,CSRF令牌也赢得了';行不通
因此,我遵循了这条线索上答案的说明: 然而,当我通过邮递员发送POST请求时,它仍然不断抛出403错误,我想知道我在这里遗漏了什么。我也尝试了最后一个答案(使用braces.views和CsrfExemptMixin),但仍然不起作用。下面是到目前为止我的代码Python 即使在发送之后,CSRF令牌也赢得了';行不通,python,django,django-csrf,Python,Django,Django Csrf,因此,我遵循了这条线索上答案的说明: 然而,当我通过邮递员发送POST请求时,它仍然不断抛出403错误,我想知道我在这里遗漏了什么。我也尝试了最后一个答案(使用braces.views和CsrfExemptMixin),但仍然不起作用。下面是到目前为止我的代码 import json import jwt from psr.settings import SECRET_KEY from django.http impo
import json
import jwt
from psr.settings import SECRET_KEY
from django.http import HttpResponse, JsonResponse
from django.contrib.auth.forms import AuthenticationForm
from django.contrib import messages
from django.contrib.auth import login, logout, authenticate
from django.contrib.auth import views as auth_views
from django.utils.decorators import method_decorator
from django.views.decorators.csrf import csrf_exempt
from braces.views import CsrfExemptMixin
from .models import User
class LoginView(auth_views.LoginView):
@method_decorator(csrf_exempt)
def dispatch(self, request, *args, **kwargs):
return super(LoginView, self).dispatch(request, *args, **kwargs)
def post(self, request):
form = AuthenticationForm(data = request.POST)
if form.is_valid():
user = authenticate(email=request.POST['email'], password=request.POST['password'])
if user is not None:
messages.add_message(request, messages.SUCCESS, "Welcome back, {}".format(user))
login(request, user)
token = jwt.encode({'id': user.id}, SECRET_KEY, algorithm='HS256').decode('utf-8')
return JsonResponse({'token': token}, status=200)