Sunday, December 2, 2018

Re: Forbidden (CSRF token missing or incorrect.)

Hi guys.

Thank you for the answers. I forgot to tell you that I hit the server in Developement and it is http. (local)

I did put these parameters in my settings.py :

CSRF_COOKIE_SECURE = False
SESSION_COOKIE_SECURE = False

but it keeps displaying the same message :

Forbidden (CSRF token missing or incorrect.): /vehicule/
[02/Dec/2018 08:03:10] "pagination%5Bpage%5D=1&pagination%5Bperpage%5D=10&sort%5Bsort%5D=asc&sort%5Bfield%5D=OrderID&query=GET /vehicule/ HTTP/1.1" 403 2536


but it display it just once this time after I pulled the last Django Dev from github, this is happening after I logged in and click on any page that has a CSRF it display a 403 page after I refresh the browser or reload it it, everythin works fine, you can click on whatever you want it will work fine.

so now just one time after logging in.

I'm using the built in logging django machinery (Views and URLs), not even my own views to manage logging.

Thank you guys.
 

Le mercredi 21 novembre 2018 05:38:19 UTC-8, Rabah Saadi a écrit :
Hello,

I've been using Django 2.2Dev for a while now, since April 2018, and it is working just fine (I got my reasons why Django Dev). But since the last git pull, it shows the CSRF token missing, on every page has a form with CSRF token.

Is there something broke or ... ? since My Django-2.2Dev before the last "git pull" was working just fine.

PS : Donwgrade to Django 2.1.3 stable, works fine too.

thank you.

--
You received this message because you are subscribed to the Google Groups "Django users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to django-users+unsubscribe@googlegroups.com.
To post to this group, send email to django-users@googlegroups.com.
Visit this group at https://groups.google.com/group/django-users.
To view this discussion on the web visit https://groups.google.com/d/msgid/django-users/58f570ae-8912-4922-b6cd-af8839b314a9%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

No comments:

Post a Comment