I have following ajax query that gets generated from my template.
This is done after user has logged into the system. One thing I have
noticed is very first GET request always prompts a dialog box that
asks users to login with username and password. I have done
console.log and csrf_token is non-null when this dialog is shown. Does
anybody have idea why this happens on all subsequnt reloads of this
page I never get prompted to enter username & password.
$.ajax({
type: "GET",
withCredentials: true,
async: false,
url: "/api/v1/myurl/",
data: {
csrfmiddlewaretoken: '{{ csrf_token }}'
},
success: function( json) {
});
It was suggested to me that I should follow this and make sure that
csrf token is present in the header.
https://docs.djangoproject.com/en/dev/ref/contrib/csrf/#ajax
I have made sure that in my javascript I have recommended code that
set the Requestheader but that doesn't help!
Can anyone help me with this?
-Subodh
--
You received this message because you are subscribed to the Google Groups
"Django users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to django-users+unsubscr...@googlegroups.com.
To post to this group, send email to django-users@googlegroups.com.
Visit this group at http://groups.google.com/group/django-users.
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-users/CALr9Q3Z9RXq9FwQbZV%2BY674qtnF-4Cf4wbnBjTfG2jJTVUEG4g%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
