今天在處理公司官網時,請求後臺的單獨某個方法不想使用csrf驗證進行數據的訪問
方法如下:
在url.py文件中修改設置路由
修改前:
from django.urls import path
from . import views
urlpatterns = [
path('publisher-warranty/', views.publisher_warranty, name='publisher_warranty')
]
修改後:
from django.views.decorators.csrf import csrf_exempt
from django.urls import path
from . import views
urlpatterns = [
path('publisher-warranty/', csrf_exempt(views.publisher_warranty), name='publisher_warranty')
]
在修改views.py
導入包:
from django.views.decorators.csrf import csrf_exempt
然後在單獨需要取消驗證的方法前面加裝飾器:
@csrf_exempt
如下:
@csrf_exempt
def publisher_warranty(request):
arg_dic = {}
if request.POST:
action = request.POST.get('action')
arg_dic = eval(arg0)
即可不需要csrf驗證,訪問。