cocacola
Reputation: 13
django and csrf_token problem
I have a little problem with the token in django.
When I write a POST form and add {{csrf_token}}, when I submit it the token is checked .
But when I send a POST request (in ajax) and add the paramater manually csrfmiddlewaretoken , the token is not checked.
But I don't know why ?
Thanks.
Upvotes: 1
Views: 545
Answers (1)
Daniel Roseman
Reputation: 599470
AJAX requests are not checked for CSRF: the browser's same origin policy means that CSRF attacks are much harder. See the explanation in the docs.
Upvotes: 6
Related Questions
- Django: CSRF token missing or incorrect. / avoid {% csrf_token %}
- django csrf token : CSRF token missing or incorrect
- Forbidden (CSRF token missing or incorrect) Django error
- csrf_token problem django
- django csrf_token missing error
- CSRF token missing or incorrect in django
- CSRF token missing or invalid Django
- Trouble with CSRF token in Django
- "CSRF token missing or incorrect"
- CSRF token missing or incorrect (I know, its been asked before!)