How to solve the 403 error in django's use of ajax post data, djangoajax
This article introduces the error 403 in django using jquery ajax post data in two ways. For details, see the following.
Method 1:
If jQuery is used to handle ajax, Django directly sends a piece of code to solve the problem. Put it in an independent js file and introduce it to the html page. Note that this js file must be introduced after the jquery js file is introduced.
$(document).ajaxSend(function(event, xhr, settings) { function getCookie(name) { var cookieValue = null; if (document.cookie && document.cookie != '') { var cookies = document.cookie.split(';'); for (var i = ; i < cookies.length; i++) { var cookie = jQuery.trim(cookies[i]); // Does this cookie string begin with the name we want? if (cookie.substring(, name.length + ) == (name + '=')) { cookieValue = decodeURIComponent(cookie.substring(name.length + )); break; } } } return cookieValue; } function sameOrigin(url) { // url could be relative or scheme relative or absolute var host = document.location.host; // host + port var protocol = document.location.protocol; var sr_origin = '//' + host; var origin = protocol + sr_origin; // Allow absolute or scheme relative URLs to same origin return (url == origin || url.slice(, origin.length + ) == origin + '/') || (url == sr_origin || url.slice(, sr_origin.length + ) == sr_origin + '/') || // or any other URL that isn't scheme relative or absolute i.e relative. !(/^(\/\/|http:|https:).*/.test(url)); } function safeMethod(method) { return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method)); } if (!safeMethod(settings.type) && sameOrigin(settings.url)) { xhr.setRequestHeader("X-CSRFToken", getCookie('csrftoken')); } });
Method 2:
Add the @ csrf_exempt modifier before the view for processing the post Data
For example
@csrf_exempt def profile_delte(request): del_file=request.POST.get("delete_file",'')
The preceding two methods show you that error 403 occurs when django uses ajax post data. I hope this will be helpful to you.