Django CSRF framework cannot be disabled and is breaking my site
Posted
by MikeN
on Stack Overflow
See other posts from Stack Overflow
or by MikeN
Published on 2009-10-30T16:38:07Z
Indexed on
2010/03/12
10:47 UTC
Read the original article
Hit count: 825
The django csrf middleware can't be disabled. I've commented it out from my Middleware of my project but my logins are failing due to missing CSRF issues. I'm working from the Django trunk. How can CSRF cause issues if it is not enabled in middleware?
I have to disable it because there are lots of POST requests on my site that CSRF just breaks. Any feedback on how I can completely disable CSRF in a django trunk project?
The "new' CSRF framework from Django's trunk is also breaking an external site that is coming in and doing a POST on a URL I'm giving them (this is part of a restful API.) I can't disable the CSRF framework as I said earlier, how can I fix this?
© Stack Overflow or respective owner