Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
I have set up weblate using the documentation without docker. It is running from a virtualenv, served by gunicorn with an nginx in front of it. HTTPS is set up in front (I am using
I can login
When I attempt a login: "CSRF verification failed. Request aborted."
I have observed the following:
Please paste the output of command
The MIDDLEWARE looks correct.
Just to clarify - the token in the form should change with every request.
Can you try running with DEBUG = True, that should give you more detailed description of what went wrong. What might be causing this as well is that your browser is not sending referrer, see https://docs.djangoproject.com/en/2.0/ref/csrf/#how-it-works
Thank you for poining out the referrer issue. I had to manually add my domain as
This is somewhat surprising to me, as Django/Weblate knows the URL of the site, e.g. the links in confirmation emails it sens contain the correct hostname.
I'll close the issue for now, but it if this setting is actually necessary to operate correctly, you'd may want to add it to the example configuration.
For what it's worth, my actual hostname is a fourth-level subdomain (translate.internal.project.org).