bootstrap-flask icon indicating copy to clipboard operation
bootstrap-flask copied to clipboard

Published 20 hours ago verified publisher icon helloflask

CSRF Token handling unclear

Open WolfgangFahl opened this issue 2 years ago • 0 comments

To get CSRF Token handling as outline in https://flask-dropzone.readthedocs.io/en/latest/advanced.html I tried:

   # enable CSRF protection
        self.app.config['DROPZONE_ENABLE_CSRF'] = True

<!--  https://github.com/greyli/flask-dropzone/issues/29 -->
<script type="text/javascript">
	Dropzone.options.myDropzone.headers = {"X-CSRF-Token": "{{ csrf_token() }}"}
</script>
	<h1>Upload Form</h1>
    {{ render_form(upload_form) }}
    {{ dropzone.create(action=url_for('test_upload')) }}
    {{ dropzone.config() }}

but still i get:

400 Bad Request

Bad Request

The CSRF token is missing.

WolfgangFahl avatar Aug 06 '21 21:08 WolfgangFahl