Omar Alhussani
Reputation: 340
Django Rest Framework Forbidden when i send post request
I am making a website with django rest framework backend and a react frontend but when i use axios to send a post request to /products it sends a 403 forbidden error
this is the views file
@api_view(['GET', 'POST'])
def products(request):
if request.method == 'GET':
products = Product.objects.all()
serializer = ProductSerializer(products, many=True)
return Response(serializer.data)
elif request.method == 'POST':
serializer = ProductSerializer(data=request.data)
print(request.data)
if serializer.is_valid():
serializer.save()
return Response(serializer.data, status=status.HTTP_201_CREATED)
return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)
this is how i send the request in react:
const handleSave = () => (
axios.post('/products', getInputData()).then((response) => (console.log(response)))
);
this is my settings file in django:
ALLOWED_HOSTS = []
# Application definition
INSTALLED_APPS = [
'django.contrib.admin',
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
'corsheaders',
'rest_framework',
'API',
]
MIDDLEWARE = [
'django.middleware.security.SecurityMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'corsheaders.middleware.CorsMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
]
CORS_ORIGIN_ALLOW_ALL = False
CORS_ORIGIN_WHITELIST = (
'http://localhost:3000',
)
Upvotes: 0
Views: 1052
Answers (1)
Omar Alhussani
Reputation: 340
so here is what I ended up doing
function getCookie(name) {
let cookieValue = null;
if (document.cookie && document.cookie !== '') {
const cookies = document.cookie.split(';');
for (let i = 0; i < cookies.length; i++) {
const cookie = cookies[i].trim();
// Does this cookie string begin with the name we want?
if (cookie.substring(0, name.length + 1) === (name + '=')) {
cookieValue = decodeURIComponent(cookie.substring(name.length + 1));
break;
}
}
}
return cookieValue;
}
function add_product(data) {
const csrftoken = getCookie('csrftoken');
const config = {
headers: {
'content-type': 'application/json',
'X-CSRFToken': csrftoken,
}
}
axios.post('/products', data, config).then((response) => (alert(response))
}
Upvotes: 1
Related Questions
- Post method not allowed drf
- Forbidden (403) in a post request - djangorest-react
- 403 Forbidden Error when trying to post and put a axios request in a web app using Django and React
- 400(Bad request) status code when making request with axios in reactjs
- Getting "status 400 Bad Request" in django rest framework with react
- Error sending POST from React front end to Django,error status 401
- React axios post error: "Request failed with status code 400"
- Error in posting data through Axios to Django Rest Framework server,Error code 500
- Axios post request not working with Django Rest Framework
- Cannot do axios PUT request in Django REST+React framework - Error 403