stackoom
  简体   繁体   中英

ALLOWED_HOSTS and Django

 原文  2017-07-19 14:52:33       python/ django/ django-1.11

Question

I tried to launch a Django 1.11 project on production server. When I start the app I see the following error:

Invalid HTTP_HOST header: 'bla-bla-bla.bla-bla-vla.com'. You may need to add u'bla-bla-bla.bla-bla-vla.com' to ALLOWED_HOSTS**

But, host "bla-bla-bla.bla-bla-vla.com" has been added to ALLOWED_HOSTS in settings.py already!

I tried to switch DEBUG from False to True and back. It works fine, then.

What am I doing wrong?

6 answers

solution1
 14 ACCPTED  2017-07-19 15:14:41

If Django says:

Invalid HTTP_HOST header: 'bla-bla-bla.bla-bla-vla.com' . You may need to add u' bla-bla-bla.bla-bla-vla.com ' to ALLOWED_HOSTS

then you need to add bla-bla-bla.bla-bla-vla.com , literally (or using a dot as a wildcard) to ALLOWED_HOSTS ( docs ).

Then reload Apache2 (not restart, reload) to verify changes have applied.

solution2
 6  2017-07-19 15:07:45

As I said in comments :

First option :

You have to write : ALLOWED_HOSTS=["bla-bla.com", "localhost", "127.0.0.1"] in settings.py file

Then, you just have to restart your server with :

sudo reboot

Or easily reload or restart apache2 service

service apache2 reload or service apache2 restart

It should work now ;)

solution3
 1  2017-07-19 14:58:31

ALLOWED_HOSTS = [
    '127.0.0.1',
    'localhost',
    'bla-bla',
]

solution4
 0  2022-02-26 15:17:58

Also, if you have a service like gunicorn between your localhost and your nginx server or apache2 server. Remember to restart it too.

sudo systemctl restart gunicorn

solution5
 0  2022-03-14 04:36:23

I had the same issue make fixed using edit settings.py

ALLOWED_HOSTS = ['127.0.0.1', 'localhost']

Then Run

python manage.py runserver 0.0.0.0:8000

solution6
 0  2022-07-05 11:01:05

Encountered the same error with NGINX . If one is developing & still testing with port 80 only (no 443 yet) , one may need to temporarily deactivate any strict HTTPS settings right from django settings.py itself. eg comment:

# #### strict https settings
# #### UNCOMMENT at production
# SECURE_REFERRER_POLICY = "same-origin"
# SECURE_BROWSER_XSS_FILTER = True
# SESSION_COOKIE_SECURE = True
# CSRF_COOKIE_SECURE = True
# CSRF_COOKIE_HTTPONLY = True
# SECURE_HSTS_SECONDS = 15780000  
# SECURE_CONTENT_TYPE_NOSNIFF = True
# SECURE_HSTS_INCLUDE_SUBDOMAINS = True
# SECURE_HSTS_PRELOAD = True
# SECURE_SSL_REDIRECT = True
# SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
#
# 
# #PREPEND_WWW = True
# #BASE_URL=["https://www.example.com"]

The error disappears. You can then uncomment back to strict HTTPS settings when the port 443 nginx server block settings are also done.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question django ALLOWED_HOSTS not working Django and allowed_hosts again - error 400 Django Allowed_Hosts Error. Django REST api calls and allowed_hosts What does [::1] mean in ALLOWED_HOSTS in Django? Deploying django app with docker, ALLOWED_HOSTS Django ALLOWED_HOSTS vs CORS(django-cors-headers) django's ALLOWED_HOSTS throws error 500? django 1.5 update ALLOWED_HOSTS failing SuspiciousOperation Hitting 500 error on django with debug=False even with ALLOWED_HOSTS=["*"]
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM