Nginx.conf and gunicorn.conf are int this link [1]. And I use Django - 1.6.5
https://gist.github.com/lucassimon/0b982d228490bbd263ce Em domingo, 6 de julho de 2014 21h39min28s UTC-3, Lucas Simon Rodrigues Magalhaes escreveu: > > > > Hi, > > I has a problem when I access the admin url the nginx redirect my domain > to https://xxx.com.br/admin. > > I can't fix this error, I try everything. So, How to disable it ? > > > Forbidden (403) > > CSRF verification failed. Request aborted. > Help > > Reason given for failure: > > Referer checking failed - http://www.xxxx.com.br/admin/ does not match > https://www.xxxxxx.com.br/. > > > In general, this can occur when there is a genuine Cross Site Request > Forgery, or when Django's CSRF mechanism > <http://docs.djangoproject.com/en/dev/ref/contrib/csrf/#ref-contrib-csrf> has > not been used correctly. For POST forms, you need to ensure: > > - Your browser is accepting cookies. > - The view function uses RequestContext > > <http://docs.djangoproject.com/en/dev/ref/templates/api/#subclassing-context-requestcontext> > for > the template, instead of Context. > - In the template, there is a {% csrf_token %} template tag inside > each POST form that targets an internal URL. > - If you are not using CsrfViewMiddleware, then you must use > csrf_protect on any views that use the csrf_token template tag, as > well as those that accept the POST data. > > You're seeing the help section of this page because you have DEBUG = True in > your Django settings file. Change that to False, and only the initial > error message will be displayed. > > You can customize this page using the CSRF_FAILURE_VIEW setting. > -- You received this message because you are subscribed to the Google Groups "Django users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/django-users. To view this discussion on the web visit https://groups.google.com/d/msgid/django-users/5654c56d-e46d-4d80-b59d-a949a5a850b8%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
