stackoom
  简体   繁体   中英

Django REST and React - JWT Cookie not getting set in browser but working with postman

 原文  2021-02-26 17:49:29       reactjs/ django/ django-models/ django-rest-framework/ react-redux

Question

Hey guys I am stuck trying to solve the issue with django set_cookie , I can't find the cookie in the browser and it doesn't work but works with postman. I went through some of the SO answers and found that I had to provide withCredentials:true in the frontend and I have done that, but still it doesn't work. This is the code I have, can someone tell me the error in this?

I want to have the cookies set at login, as of now I am storing the token in local storage and I came to know it is not a safe option.

def post(self, request, format=None):
    data            = request.data
    response        = Response()
    username        = data.get('username', None)
    password        =  data.get('password', None)

    user            = authenticate(username=username, password=password)
    if user is not None:
        if user.is_active:
            data    = get_tokens_for_user(user)
            response.set_cookie(
                key     = settings.SIMPLE_JWT['AUTH_COOKIE'],
                value   = data["access"],
                expires = settings.SIMPLE_JWT['ACCESS_TOKEN_LIFETIME'],
                secure  = settings.SIMPLE_JWT['AUTH_COOKIE_SECURE'],
                httponly = settings.SIMPLE_JWT['AUTH_COOKIE_HTTP_ONLY'],
                samesite = settings.SIMPLE_JWT['AUTH_COOKIE_SAMESITE']
            )
            csrf.get_token(request)
            response.data = {"Response": "Login Successful", "data":data,}
            return response
        else:
            return Response({"error": "User is not active"}, status=status.HTTP_404_NOT_FOUND)
    else:
        return Response({"error": "Invalid credentials"}, status=status.HTTP_404_NOT_FOUND)

react front-end

const handleSubmit = (e) => {
    e.preventDefault();
    axiosInstance
        .post(url, {
            username: formData.username,
            password: formData.password,
        })
       // .then((res) => {
       //     localStorage.setItem('access_token', res.data.access);
       //     localStorage.setItem('refresh_token', res.data.refresh);
        //    })
        .then(()=> {
            history.push('/');
            window.location.reload(); 
        })
};

axiosInstance 

const axiosInstance = axios.create({
baseURL: baseURL,
timeout: 5000,
headers: {
    // Authorization: localStorage.getItem('access_token')
    //     ? 'JWT ' + localStorage.getItem('access_token')
    //     : null,
    'Content-Type': 'application/json',
    accept: 'application/json',

},
withCredentials: true
});

Thank you.

1 answers

solution1
 2 ACCPTED  2021-02-26 18:35:50

set backend and frontend under same IP . ex. backend is

localhost:8000

py manage.py runserver localhost:8000

and frontend is(By default):

localhost:3000

different ports same Ip .

see this

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Browser doesn't store the JWT cookie even though Postman shows the cookie correctly Cookie getting set on its own in browser when using 'react-cookie' React and Django session problem that works on Postman but not in browser Set Django REST Frmework JWT in cookies CSRF cookies not set - React, JWT, Django Cookie in a MERN app is not getting set up in the browser Spring boot & react - Cookies are not being set via browser, but are set on postman Django REST authentication not working with React Django (DRF) & React - Forbidden (CSRF cookie not set) Django Rest Framework + React JWT authentication, 403 Forbidden on protected views
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM