通过AJAX保存存储在JS变量中的blob,尝试更新django字段时有一个真正令人沮丧的时间。以下是我的观点:
def update_audio(pk, request):
if request.method == 'POST':
form = UpdateAudio(data= request.POST, files= request.FILES)
if form.is_valid():
print('valid form')
else:
print ('invalid form')
print (form.errors)
return HttpResponseRedirect('/')
网址:
url(r'^update_audio/(?P<pk>[\w-]+)$', views.update_audio, name='update_audio'),
表格:
class UpdateAudio(forms.ModelForm):
class Meta:
model = Sounds
fields = [
'sound',
]
页面上的表格:
<form id='update_audio' enctype="multipart/form-data" method="post" class="">
<input type="file" name="sound" id="id_sound" value=''>
<input class="btn btn-primary" type="submit" value="Save" onclick='upload()'/>
</form
和AJAX:
function upload(event) {
event.preventDefault();
var csrftoken = getCookie('csrftoken');
var data = new FormData();
data.set('sound', blob);
function getCookie(name) {
var cookieValue = null;
if (document.cookie && document.cookie !== '') {
var cookies = document.cookie.split(';');
for (var i = 0; i < cookies.length; i++) {
var cookie = jQuery.trim(cookies[i]);
// Does this cookie string begin with the name we want?
if (cookie.substring(0, name.length + 1) === (name + '=')) {
cookieValue = decodeURIComponent(cookie.substring(name.length + 1));
break;
}
}
}
return cookieValue;
}
function csrfSafeMethod(method) {
// these HTTP methods do not require CSRF protection
return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method));
}
$.ajaxSetup({
beforeSend: function(xhr, settings) {
if (!csrfSafeMethod(settings.type) && !this.crossDomain) {
xhr.setRequestHeader("X-CSRFToken", csrftoken);
}
}
});
// debugger;
$.ajax({
url: "{% url 'posts:update_audio' instance.pk %}",
type: 'POST',
data: data,
cache: false,
processData: false,
contentType: false,
success: function(data) {
alert('success');
}
});
return false;
}
$(function() {
$('#update_audio').submit(upload);
});
blob存储在全局var blob中,该变量将附加到var数据,这是一个FormData实例。我试图发帖时获得POST 403 Forbidden。关于我哪里出错的任何线索?几天来一直在研究这个问题,并且非常感谢一些指示 编辑:能够使用django docs Here中建议的片段传递CSRF