Sākums Izpētīt Palīdzība
Reģistrēties Pierakstīties
dayuan
/
manyi
6
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne
Koks: 34216f9fac
Atzari Tagi
manyi
/
venv
/
Lib
/
site-packages
/
missing
/
views.py

views.py 2.3 KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. from django import http
    2. 

  2. from django.conf import settings
    3. 

  3. from django.template import loader
    4. 

  4. from django.utils import decorators
    5. 

  5. from django.views.decorators import csrf
    6. 

  6. 

  7. 

  8. class EnsureCsrfCookieMixin(object):
    9. 

  9.     """
    10. 

  10.     Mixin for Django class-based views which forces a view to send the CSRF cookie.
    11. 

  11. 

  12.     This is useful when using Ajax-based sites which do not have an HTML form with
    13. 

  13.     a :tag:`csrf_token` that would cause the required CSRF cookie to be sent.
    14. 

  14.     """
    15. 

  15. 

  16.     @decorators.method_decorator(csrf.ensure_csrf_cookie)
    17. 

  17.     def dispatch(self, *args, **kwargs):
    18. 

  18.         return super(EnsureCsrfCookieMixin, self).dispatch(*args, **kwargs)
    19. 

  19. 

  20. 

  21. def bad_request_view(request, exception=None):
    22. 

  22.     """
    23. 

  23.     Displays 400 bad request page.
    24. 

  24. 

  25.     It is similar to the Django built-in ``django.views.defaults.permission_denied`` view,
    26. 

  26.     but always uses a template and a request context.
    27. 

  27.     You can configure Django to use this view by adding to ``urls.py``::
    28. 

  28. 

  29.         handler400 = 'missing.views.bad_request_view'
    30. 

  30. 

  31.     Template should not require a CSRF token.
    32. 

  32.     """
    33. 

  33. 

  34.     t = loader.get_template('400.html')
    35. 

  35. 

  36.     return http.HttpResponseBadRequest(t.render(request=request, context={
    37. 

  37.         'DEBUG': settings.DEBUG,
    38. 

  38.         'exception': str(exception) if exception else None,
    39. 

  39.     }), content_type='text/html')
    40. 

  40. 

  41. 

  42. def forbidden_view(request, exception=None, reason=''):
    43. 

  43.     """
    44. 

  44.     Displays 403 forbidden page. For example, when request fails CSRF protection.
    45. 

  45. 

  46.     It is similar to a merged Django built-in ``django.views.defaults.permission_denied`` and
    47. 

  47.     ``django.views.csrf.csrf_failure`` views, but always uses a template and a request context.
    48. 

  48.     You can configure Django to use this view by adding to ``urls.py``::
    49. 

  49. 

  50.         handler403 = 'missing.views.forbidden_view'
    51. 

  51. 

  52.     and to ``settings.py``::
    53. 

  53. 

  54.         CSRF_FAILURE_VIEW = 'missing.views.forbidden_view'
    55. 

  55. 

  56.     Template should not require a CSRF token.
    57. 

  57.     """
    58. 

  58. 

  59.     from django.middleware import csrf
    60. 

  60. 

  61.     t = loader.get_template('403.html')
    62. 

  62. 

  63.     return http.HttpResponseForbidden(t.render(request=request, context={
    64. 

  64.         'DEBUG': settings.DEBUG,
    65. 

  65.         'reason': reason,
    66. 

  66.         'no_referer': reason == csrf.REASON_NO_REFERER,
    67. 

  67.         'no_cookie': reason == csrf.REASON_NO_CSRF_COOKIE,
    68. 

  68.         'exception': str(exception) if exception else None,
    69. 

  69.     }), content_type='text/html')
    70.