·

1.292K

· djiit

Using Django with CSRF protection enabled (you should!) ? This polymer element extends core-ajax and inject the CSRF token into each ajax calls.

<link rel="import" href="/static/bower_components/polymer/polymer.html">
<link rel="import" href="/static/bower_components/core-ajax/core-ajax.html">

<polymer-element name="django-ajax" extends="core-ajax">
 <script>
 Polymer({
 getCSRFCookie: function() {
 b = document.cookie.match('(^|;)\\s*csrftoken\\s*=\\s*([^;]+)');
 return b ? b.pop() : '';
 },
 ready: function() {
 this.super();
 this.headers = {
 "X-CSRFToken": this.getCSRFCookie(),
 "X-Requested-With": "XMLHttpRequest"
 };
 }
 });
 </script>
</polymer-element> 

Related protips

Have a fresh tip? Share with Coderwall community!

Post

Post a tip

Sponsored by

#native_company#

#native_desc#

#native_cta#

Post a job for only 299ドル

Sponsored by #native_company# — Learn More