I'm getting a 401 (Which is technically an Authorization error) after doing
this.
c = Client(enforce_csrf_checks=True)
response = c.get(a_url_that_requires_login)
csrfmiddlewaretoken = '%s' %response.context['csrf_token']
response = c.post(url, data=json.dumps(body),
content_type='application/json', X_CSRFToken = csrfmiddlewaretoken)
I also tried with/without updating the session with the token
c.session.update({'csrftoken': csrfmiddlewaretoken})
Any idea why there might be an authorization error?
My permissions are loaded fine from the fixtures.
Thanks,
Pratik
On Thursday, August 25, 2011 9:24:38 AM UTC+5:30, Matteius wrote:
>
> Thanks for both suggestions, I recently tried this approach and
> reached success when I ran my tests. So I think this is the correct
> approach and I'll include this CSRF style testing with my test suite
> now.
>
> -Matteius
>
> On Jul 7, 6:02 am, Craig Blaszczyk <masterja...@gmail.com> wrote:
> > csrf_token is a proxy object not a string.
> >
> > Try doing:
> > csrf_token = '%s' % response.context['csrf_token']
--
You received this message because you are subscribed to the Google Groups
"Django users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to django-users+unsubscr...@googlegroups.com.
To post to this group, send email to django-users@googlegroups.com.
Visit this group at http://groups.google.com/group/django-users.
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-users/e7d47ed4-fbe1-4206-b4ae-dfd9500650f7%40googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
