[edx-code] Re: CSRF token missing or incorrect. When try to login

Sun, 06 May 2018 05:40:57 -0700 

You could change the cache.py file into the path directory:  
/edx/app/edxapp/edx-platform/common/djangoapps/utils/cache.py

The only thing that you must do is to change the def wrapper funvction 
adding the command "return view_func(request, *args, **kwargs)" as below. 
Using that command you don't cache the pages so the crfs tokens can be 
changed.

    def decorator(view_func):
        """The outer wrapper, used to allow the decorator to take optional 
arguments."""
        @wraps(view_func)
        def wrapper(request, *args, **kwargs):
           * return view_func(request, *args, **kwargs)*
            """The inner wrapper, which wraps the view function."""
            # Certificate authentication uses anonymous pages, 


Τη Παρασκευή, 30 Μαΐου 2014 - 4:38:54 μ.μ. UTC+3, ο χρήστης Chetan Parekh 
έγραψε:
>
> Hello All,
>
> I have get this error, when try to login in LMS edx.
> Can anyone suggest why this error comes?
> Thanks in advance.
>
> Error : 
>
> Forbidden (403)
>
> CSRF verification failed. Request aborted.
> Help
>
> Reason given for failure:
>
>     CSRF token missing or incorrect.
>     
>
> In general, this can occur when there is a genuine Cross Site Request 
> Forgery, or when Django's CSRF mechanism 
> <http://docs.djangoproject.com/en/dev/ref/contrib/csrf/#ref-contrib-csrf> has 
> not been used correctly. For POST forms, you need to ensure:
>
>    - Your browser is accepting cookies.
>    - The view function uses RequestContext 
>    
> <http://docs.djangoproject.com/en/dev/ref/templates/api/#subclassing-context-requestcontext>
>  for 
>    the template, instead of Context.
>    - In the template, there is a {% csrf_token %} template tag inside 
>    each POST form that targets an internal URL.
>    - If you are not using CsrfViewMiddleware, then you must use 
>    csrf_protect on any views that use the csrf_token template tag, as 
>    well as those that accept the POST data.
>
> You're seeing the help section of this page because you have DEBUG = True in 
> your Django settings file. Change that to False, and only the initial 
> error message will be displayed.
>
> You can customize this page using the CSRF_FAILURE_VIEW setting.
>
>
> Thanks,
>
> Chetan Parekh
>

-- 
You received this message because you are subscribed to the Google Groups 
"General Open edX discussion" group.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/edx-code/f65fefc1-692d-49c6-a750-ed614ce2f927%40googlegroups.com.

Reply via email to