堆栈内存溢出
  简体   繁体   English

API:Ajax 在 Laravel - 403 中发帖(禁止)

[英]API: Ajax post in Laravel - 403 (Forbidden)

 原文  2021-08-13 18:41:14       javascript/ ajax/ laravel/ api

问题描述

I'm getting 403 forbidden during ajax call.我在 ajax 通话期间收到403 forbidden This is happen only if the ajax is on app.js .仅当ajaxapp.js上时才会发生这种情况。 If I remove from app.js and put to index.blade.php , is working perfectly.如果我从app.js remove并放入index.blade.php ,则工作正常。

How can I make it working also on my app.js ?我怎样才能让它在我的app.js上也能工作? I've searched a lot, and found I needed to add this我搜索了很多,发现我需要添加这个

$.ajaxSetup({ headers: { 'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content') } }); $.ajaxSetup({ headers: { 'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content') } });

before the ajax, but is still not working..在 ajax 之前,但仍然无法正常工作..

controller: controller:

<?php

namespace App\Http\Controllers;

use Illuminate\Http\Request;
use DB;

class API extends Controller
{
    public function getSomething(Request $r)
    {
        $r->validate([
            'user' => 'required'
        ]);

        $data = DB::table('posts')->orderBy('id', 'desc')->get();



        return $data;
    }
}

web.php web.php

Route::group(['prefix' => 'api'], function(){
    Route::post('getSomething', 'API@getSomething');
});

index.blade.php索引.刀片.php

<script src="https://ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js"></script>
<meta name="csrf-token" content="{{ csrf_token() }}" />

.... some of my content ....

<script src="{{ asset('assets/js/app.js') }}"></script>

app.js应用程序.js

$.ajaxSetup({
    headers: {
        'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content')
    }
});

$.ajax({
    url: '{{ url("api/getSomething") }}', 
    type: 'POST',
    data: {
        user: '1',
        _token: '{{ csrf_token() }}',
        _testThisAjax: true
    },
    success: function (c) {
        console.log(c);                                         
    },
    error: function(e)
    {
        console.log(e);
    }

});

1 个解决方案

解决方案1
 1 已采纳  2021-08-13 20:34:44

Since {{ url() }} helper method will not work in app.js file so you have to set url in ajax由于{{ url() }}辅助方法在app.js文件中不起作用,因此您必须在 ajax 中设置url

Your ajax should be like this if you put this in app.js如果你把它放在app.js中,你的 ajax 应该是这样的

$.ajax({
    headers: {
        'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content')
    },
    url: '/api/getSomething', 
    type: "POST",
    data: {
             user: '1',
             _testThisAjax: true
    },
    success: function (c) {
        console.log(c);                                         
    },
    error: function(e)
    {
       console.log(e);
    }
});

Note: use either ajax headers for csrf or in data like this:注意:将 ajax 标头用于 csrf 或在这样的数据中使用:

 data: {_token: $('meta[name="csrf-token"]').attr('content') , 'key' : 'value'}

FOR MORE: https://laravel.com/docs/8.x/csrf更多信息: https://laravel.com/docs/8.x/csrf

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 django ajax post 403禁止 - django ajax post 403 forbidden .net mvc Ajax发布错误403禁止 - .net mvc Ajax Post Error 403 Forbidden JSON AJAX Post 403禁止错误 - JSON AJAX Post 403 forbidden error Django + Ajax + Facebook API 403禁止 - Django + Ajax + Facebook API 403 FORBIDDEN Google Geolocation API:403 POST禁止错误 - Google Geolocation API: 403 POST Forbidden error 403禁止从Cordova 5.0.0应用执行AJAX POST - 403 Forbidden doing AJAX POST from Cordova 5.0.0 app Ajax发布Django Rest Framework导致403禁止错误 - Ajax post getting 403 forbidden error with Django Rest Framework 发出ajax发布请求时出现403禁止错误 - 403 Forbidden error when making an ajax Post request 403使用对REST API的基本auth和ajax调用时禁止 - 403 Forbidden when using basic auth and ajax call to a REST API 来自 jquery ajax 的 Rest api 调用给出错误 403 Forbidden - Rest api call from jquery ajax gives error 403 Forbidden
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM