-
Notifications
You must be signed in to change notification settings - Fork 234
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CSRF verification failed. Request aborted. #70
Comments
I can't reproduce. Please reopen if you are still having this issue. |
This will happen if CSRF_COOKIE_HTTPONLY = True. Set to false or comment out. Would be preferable if django-s3direct pulled the csrftoken from the hidden csrftoken form field instead of from the cookie so this setting wouldnt have to be disabled. |
Allows to run with setting CSRF_COOKIE_HTTPONLY = True Fixes Issue bradleyg#70
I was getting the error at production under HTTPS, thanks @cordery for pointing me to the solution! |
Allows to run with setting CSRF_COOKIE_HTTPONLY = True Fixes Issue bradleyg#70
…#94) * Take CSRF token from csrfmiddlewaretoken field instead of from cookie Allows to run with setting CSRF_COOKIE_HTTPONLY = True Fixes Issue #70 * Fallback CSRF token to cookie if no csrfmiddlewaretoken field is present for backward compatibility * Merge branch 'master' of https://github.com/bradleyg/django-s3direct * Added in support for * Added in support for CSRF_USE_SESSIONS = True If this is turned on, there is no CSRF cookie. * Added in fallback for CSRF_USE_SESSIONS = False * Fixing merging error * Semicolon --> comma * feat: take CSRF token from csrfmiddlewaretoken hidden field also for getAwsV4Signature * fix: update bundled.js to include recent CSRF token handling at scripts.js
Hi !
I got this error -> CSRF verification failed. Request aborted.
On this view -> /s3direct/get_upload_params/
Thanks
The text was updated successfully, but these errors were encountered: