Flask_WTF csrf装饰器属性错误
Flask_WTF csrf decorator attribute error
我正在使用 flask_wtf 来保护不是表单但 post Ajax 来自 JavaScript 数据的网页。
我收到“@csrf.error_handler”装饰器的“AttributeError: 'module' object has no attribute 'error_handler'”,但无法找出原因。
在 Flask 服务器上:
from flask_wtf import csrf
app = Flask(__name__)
app.config.from_object(config)
csrf.CsrfProtect(app)
@csrf.error_handler
def csrf_error(reason):
return render_template('404.html', reason=reason)
@app.route('/completed/')
def completed(results, methods=['POST']):
data = str(request.form['data'])
JavaScript:
function sendAjax(data){
//@param data: JSON stringified object
var csrfToken = document.getElementsByName("csrf_token").getAttribute("content");
var xhr = new XMLHttpRequest();
xhr.open('PUT', '/completed');
xhr.setRequestHeader('Content-Type', 'application/json');
xhr.onload = function() {
if (xhr.status === 200) {
var userInfo = JSON.parse(xhr.responseText);
}
};
xhr.send(data);
}
html:
<!-- 'form' with hidden field just so can post data back to server -->
<form method="post" action="{{ url_for('completed') }}">
<meta id="csrf_token" content="{{ csrf_token() }}" />
</form>
您需要将错误处理程序与您的 CsrfProtect 实例相关联。
from flask_wtf.csrf import CsrfProtect
app = Flask(__name__)
csrf = CsrfProtect(app)
@csrf.error_handler
def csrf_error(reason):
return render_template('404.html', reason=reason)
我正在使用 flask_wtf 来保护不是表单但 post Ajax 来自 JavaScript 数据的网页。
我收到“@csrf.error_handler”装饰器的“AttributeError: 'module' object has no attribute 'error_handler'”,但无法找出原因。
在 Flask 服务器上:
from flask_wtf import csrf
app = Flask(__name__)
app.config.from_object(config)
csrf.CsrfProtect(app)
@csrf.error_handler
def csrf_error(reason):
return render_template('404.html', reason=reason)
@app.route('/completed/')
def completed(results, methods=['POST']):
data = str(request.form['data'])
JavaScript:
function sendAjax(data){
//@param data: JSON stringified object
var csrfToken = document.getElementsByName("csrf_token").getAttribute("content");
var xhr = new XMLHttpRequest();
xhr.open('PUT', '/completed');
xhr.setRequestHeader('Content-Type', 'application/json');
xhr.onload = function() {
if (xhr.status === 200) {
var userInfo = JSON.parse(xhr.responseText);
}
};
xhr.send(data);
}
html:
<!-- 'form' with hidden field just so can post data back to server -->
<form method="post" action="{{ url_for('completed') }}">
<meta id="csrf_token" content="{{ csrf_token() }}" />
</form>
您需要将错误处理程序与您的 CsrfProtect 实例相关联。
from flask_wtf.csrf import CsrfProtect
app = Flask(__name__)
csrf = CsrfProtect(app)
@csrf.error_handler
def csrf_error(reason):
return render_template('404.html', reason=reason)