Last active
August 9, 2021 09:22
-
-
Save gaspardzul/1218844560a8405c6d40 to your computer and use it in GitHub Desktop.
Este Gist te permite configurar las peticiones AJAX que haces en proyectos Django utilizando Jquery.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
/** | |
* Este script de javascript permite trabajar transparentemente solicitudes que requieren | |
* protección del token CSRF por medio de AJAX JQUERY. | |
* Esto te permitirá hacer solcitudes a web Services de Django por medio de AJAX Jquery. | |
* Para utilizarlo basta con integrar el archivo DjangoAjax.js en tu directorio de JS y hacer referencia a él en tus templates | |
* que requieren del uso de AJAX por POST o algún otro que requiera el token CSRF. | |
* Este script está basado en la documentación oficial de Django https://docs.djangoproject.com | |
*/ | |
$(function(){ | |
//Obtenemos la información de csfrtoken que se almacena por cookies en el cliente | |
var csrftoken = getCookie('csrftoken'); | |
//Agregamos en la configuración de la funcion $.ajax de Jquery lo siguiente: | |
$.ajaxSetup({ | |
beforeSend: function(xhr, settings) { | |
if (!csrfSafeMethod(settings.type) && sameOrigin(settings.url)) { | |
// Send the token to same-origin, relative URLs only. | |
// Send the token only if the method warrants CSRF protection | |
// Using the CSRFToken value acquired earlier | |
xhr.setRequestHeader("X-CSRFToken", csrftoken); | |
} | |
} | |
}); | |
function sameOrigin(url) { | |
// test that a given url is a same-origin URL | |
// url could be relative or scheme relative or absolute | |
var host = document.location.host; // host + port | |
var protocol = document.location.protocol; | |
var sr_origin = '//' + host; | |
var origin = protocol + sr_origin; | |
// Allow absolute or scheme relative URLs to same origin | |
return (url == origin || url.slice(0, origin.length + 1) == origin + '/') || | |
(url == sr_origin || url.slice(0, sr_origin.length + 1) == sr_origin + '/') || | |
// or any other URL that isn't scheme relative or absolute i.e relative. | |
!(/^(\/\/|http:|https:).*/.test(url)); | |
} | |
// usando jQuery | |
function getCookie(name) { | |
var cookieValue = null; | |
if (document.cookie && document.cookie != '') { | |
var cookies = document.cookie.split(';'); | |
for (var i = 0; i < cookies.length; i++) { | |
var cookie = jQuery.trim(cookies[i]); | |
// Does this cookie string begin with the name we want? | |
if (cookie.substring(0, name.length + 1) == (name + '=')) { | |
cookieValue = decodeURIComponent(cookie.substring(name.length + 1)); | |
break; | |
} | |
} | |
} | |
return cookieValue; | |
} | |
function csrfSafeMethod(method) { | |
// estos métodos no requieren CSRF | |
return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method)); | |
} | |
}); |
Super!!!! Me ayudará bastante :D
Thanks
definitivamente me salvaste la vida gracias Gaspar
Gracias bro
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Muchas gracias Señor, será de muy util