I've read the stack overflow posts, blog articles on how CSRF works, etc, but still failing to get this to work in both JavaScript and Dart. No matter what I try, I keep getting a 403 for my login method. I've attempted various Apache/Virtual Host programs for Mac to run a local domain in hopes it was just a localhost or browser security problem, all to no avail. I used to be able to disable web security on Chrome, but that doesn't seem to work anymore.
Client Code: https://github.com/JesterXL/workoutlogger/blob/master/client/WorkoutLoggerDartAngular2/web/com/jessewarden/workoutlogger/login/GetTokenService.dart https://github.com/JesterXL/workoutlogger/blob/master/client/WorkoutLoggerDartAngular2/web/com/jessewarden/workoutlogger/login/LoginService.dart Server Code: https://github.com/JesterXL/workoutlogger/blob/master/server/workoutlogger/workoutapi/views.py HTTP Responses: https://gist.github.com/JesterXL/b7fb18f30e80e0156c98 https://gist.github.com/JesterXL/9c148016911622dfee66 https://gist.github.com/JesterXL/8cfd28edf6aebfe1afd4 Thanks if you can help! -- You received this message because you are subscribed to the Google Groups "Django users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/django-users. To view this discussion on the web visit https://groups.google.com/d/msgid/django-users/8aa70895-afc4-41f7-865b-46fba033fff1%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
