堆栈内存溢出
  简体   繁体   English

django-rest-auth 注销 CSRF 失败

[英]django-rest-auth logout CSRF Failed

 原文  2021-04-14 10:58:45       reactjs/ redux/ django-rest-framework

问题描述

i am using React,Redux and django rest api to build a simple website and currently learning to use django-rest-auth everything works great except the logout which gives me the CSRF Failed error. i am using React,Redux and django rest api to build a simple website and currently learning to use django-rest-auth everything works great except the logout which gives me the CSRF Failed error.

auth.js auth.js

export const logout = token => {
    localStorage.removeItem('expirationDate');
    const requestOptions = {
        method: "POST",
        headers: { "Content-Type": "application/json",
        'X-CSRFToken':token,
                },
    };
    fetch("/rest-auth/logout/", requestOptions)
    return {
        type: actionTypes.AUTH_LOGOUT
    };
}
export const authLogin = (username, password) => {
    return dispatch => {
        dispatch(authStart());
        axios.post('http://127.0.0.1:8000/rest-auth/login/', {
            username: username,
            password: password
        })
        .then(res => {
            const token = res.data.key;
            const expirationDate = new Date(new Date().getTime() + 3600 * 1000);
            localStorage.setItem('token', token);
            localStorage.setItem('expirationDate', expirationDate);
            dispatch(authSuccess(token));
            dispatch(checkAuthTimeout(3600));
        })
        .catch(err => {
            dispatch(authFail(err))
        })
    }
}

settings.py设置.py

REST_FRAMEWORK = {
    
    'DEFAULT_AUTHENTICATION_CLASSES': (
    'rest_framework.authentication.SessionAuthentication',
    ),
    'DEFAULT_PERMISSION_CLASSES': (
    'rest_framework.permissions.AllowAny',
    ),
}

1 个解决方案

解决方案1
 0 已采纳  2021-04-14 13:31:07

the solution was Setting default headers for axios解决方案是为 axios 设置默认标头

auth.js auth.js

axios.defaults.xsrfHeaderName = "X-CSRFToken";
axios.defaults.withCredentials = true

export const logout = () => {
    localStorage.removeItem('token');
    axios.post("/rest-auth/logout/", {})
    return {
        type: actionTypes.AUTH_LOGOUT
    };
}

settings.py设置.py

CSRF_COOKIE_NAME = "XSRF-TOKEN"

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 仅将 SessionAuthentication 与 django-rest-auth 一起使用 - Using only SessionAuthentication with django-rest-auth django-rest-auth 从 rest-auth/user 获取用户名 - django-rest-auth get username from rest-auth/user 从 django-rest-auth 获取 React 中的用户详细信息会返回 403(禁止) - 使用 authtoken - Fetching user details in React from django-rest-auth gives back 403 (Forbidden) - Using authtoken CSRF 验证失败 Django-rest-framework Djoser - CSRF verification failed Django-rest-framework Djoser csrf 令牌缺少 axios 到 django rest 框架 - csrf token missing axios to django rest framework {detail: 'CSRF Failed: CSRF token missing.'} Django 和 React - {detail: 'CSRF Failed: CSRF token missing.'} Django and React 403 禁止的 CSRF 验证失败 React Django - 403 Forbidden CSRF Verification Failed React Django 注销后后端未删除 dj-rest-auth 令牌 - dj-rest-auth token not deleted in backend after logout 反应原生 Axios Django - Csrf 失败引用检查失败没有引用 - React native Axios Django - Csrf failed referer checking failed no referer 如何使用 Axios 将 CSRF Coo​​kie 从 React 发送到 Django Rest Framework - How to send CSRF Cookie from React to Django Rest Framework with Axios
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM