StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PODjango 1.5 CSRF Ajax
primarykey
Id
15588388
data
AcceptedAnswerId
15588626
AnswerCount
2
ClosedDate
CommentCount
1
CommunityOwnedDate
CreationDate
2013-03-23T15:14:17.430
FavoriteCount
0
LastActivityDate
2013-03-23T21:20:43.123
LastEditDate
2013-03-23T21:20:43.123
LastEditorUserId
1427661
OwnerUserId
1427661
ParentId
0
PostTypeId
1
Score
4
ViewCount
3513
LastEditorDisplayName
text
Body
<p>I'm trying to create a web app that makes Ajax calls when certain buttons are clicked, updating data in my models and displaying the updated data. Here is my template:</p> <pre><code><html> <head> <script src="http://code.jquery.com/jquery-1.9.1.min.js"></script> <script src="{{ STATIC_URL }}/workout1.js"></script> </head> <body> <span id="squats">Squats: {{ user.weekOne.squats }} done.<br/></span> <span id="lunges">Lunges: {{ user.weekOne.lunges }} done.<br /></span> <span id="stairDays">Stair Days: {{ user.weekOne.stairDaysCount }}<br/></span> <span id="skipStairs">Skip Stairs: {{ user.weekOne.skipStairs }}<br /></span> <form> {% csrf_token %} <input type="text" name="squats" id="squatsVal" value="Squats" /> <input type="submit" id="submitSquats" value="Add Squats"/><br /> </form> <form> <input type="text" name="lunges" value="Lunges" /> <input type="submit" value="Add Lunges" /><br /> </form> <form> <input type="submit" value="Stairs skipped."><br /> </form> </body> </html> </code></pre> <p>I use Django's <a href="https://docs.djangoproject.com/en/dev/ref/contrib/csrf/" rel="nofollow">suggested code</a> for dealing with Ajax and CSRF. Here is my resultant jQuery: </p> <p>$(document).ready(function() {</p> <pre><code>// Boilerplate for handling CSRF, from Django's website function getCookie(name) { var cookieValue = null; if (document.cookie && document.cookie != '') { var cookies = document.cookie.split(';'); for (var i = 0; i < cookies.length; i++) { var cookie = jQuery.trim(cookies[i]); // Does this cookie string begin with the name we want? if (cookie.substring(0, name.length + 1) == (name + '=')) { cookieValue = decodeURIComponent(cookie.substring(name.length + 1)); break; } } } return cookieValue; }; var csrftoken = getCookie('csrftoken'); $.ajaxSetup({ crossDomain: false, // obviates need for sameOrigin test beforeSend: function(xhr, settings) { if (!csrfSafeMethod(settings.type)) { xhr.setRequestHeader("X-CSRFToken", csrftoken); } } }); // the actual Ajax $("#submitSquats").click(function() { var exercise = "squats"; var amount = $('#squats').val(); var data = {'exercise': exercise, 'amount': amount}; $.ajax({ type:"POST", url:"submitWorkout1", data: data, success: function() { $('#squats').html('<span>Success</span>'); } }); return false; }); </code></pre> <p>});</p> <p>Finally, here is the view that handles the incoming Ajax request and returns a response for the Ajax to work with: </p> <pre><code>def submitWorkout1(request): exercise = request.POST['exercise'] amount = request.POST['amount'] user = UserProfile.objects.get(user=request.user) exercise, amount = user.WeekOne.updateExercise(exercise, amount) return HttpResponse(simplejson.dumps({'result': 'success', exercise: amount})) </code></pre> <p>Unfortunately, when I try to click on the Submit Squats button and run the jQuery, I get a <code>CSRF Token Missing or Incorrect</code> error message. Moreover, if I use a @csrf_exempt identifier on top of my view for testing purposes, I get this error: </p> <pre><code>"Key 'exercise' not found in <QueryDict: {u'undefined': [u'', u'']}>" </code></pre> <p>So even if I were to fix the CSRF problem, it appears there is something else wrong with my Ajax code. But I want to fix both problems. Help! </p> <p>Updated code (see catherine's post below): </p> <p>HTML:</p> <pre><code><body> <span id="squats">Squats: {{ user.weekOne.squats }} done.<br/></span> <span id="lunges">Lunges: {{ user.weekOne.lunges }} done.<br /></span> <span id="stairDays">Stair Days: {{ user.weekOne.stairDaysCount }}<br/></span> <span id="skipStairs">Skip Stairs: {{ user.weekOne.skipStairs }}<br /></span> <form method="POST" action="{% url workout_game_app.views.submitWorkout1 %}"> {% csrf_token %} <input type="text" name="squats" id="squatsVal" value="Squats" /> <input type="submit" id="submitSquats" value="Add Squats"/><br /> </form> </body> </code></pre> <p>jQuery:</p> <pre><code>$(document).ready(function() { $("#submitSquats").click(function() { var exercise = "squats"; var amount = $('#squats').val(); $.ajax({ type:"POST", url:"/workout_game_app/workouts/submitWorkout1/", data: {'exercise': exercise, 'amount:': amount, 'csrfmiddlewaretoken': '{{csrf_token}}'}, contentType: "application/json;charset=utf-8", dataType: "json", success: function() { $('#squats').html('<span>Success</span>'); } }); return false; }); }); </code></pre> <p>view:</p> <pre><code>def submitWorkout1(request): if request.method == 'POST': exercise = request.POST['exercise'] amount = request.POST['amount'] user = UserProfile.objects.get(user=request.user) exercise, amount = user.WeekOne.updateExercise(exercise, amount) data = simplejson.dumps({ 'result': 'success', 'exercise': exercise, 'amount': amount }, indent=4) return HttpResponse(data, mimetype="application/javascript") </code></pre> <p>URL:</p> <pre><code>urlpatterns = patterns('', url(r'^$', 'workout_game_app.views.index'), url(r'^signup$/', 'workout_game_app.views.signup'), url(r'^login$/', 'workout_game_app.views.login_view'), url(r'^logout/$', 'workout_game_app.views.logout_view'), url(r'^workouts/workout1/$', 'workout_game_app.views.workout1'), url(r'^workouts/submitWorkout1/$', 'workout_game_app.views.submitWorkout1'), </code></pre>
Tags
<jquery><python><ajax><django>
Title
Django 1.5 CSRF Ajax
singulars
PostAcceptedAnswerId
1. PO
  singulars
  PostTypePostTypeId
  PTAnswer
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USuser1427661
UserOwnerUserId
1. USuser1427661
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
  singulars
  PostTypePostTypeId
  PTAnswer
2. PO
  singulars
  PostTypePostTypeId
  PTAnswer
VotesPostIdCreationDate
1. VO
  singulars
  PostPostId
  PODjango 1.5 CSRF Ajax
  UserUserId
  This table or related slice is empty.
  VoteTypeVoteTypeId
  VTUpMod
2. VO
  singulars
  PostPostId
  PODjango 1.5 CSRF Ajax
  UserUserId
  This table or related slice is empty.
  VoteTypeVoteTypeId
  VTUpMod
3. VO
  singulars
  PostPostId
  PODjango 1.5 CSRF Ajax
  UserUserId
  This table or related slice is empty.
  VoteTypeVoteTypeId
  VTUpMod
CommentsPostId
1. COAs the exception tells you, you might need to put single quotes around your url argument inside url tag. https://docs.djangoproject.com/en/dev/ref/templates/builtins/#std:templatetag-url tells you more about it.
  singulars
  PostPostId
  PODjango 1.5 CSRF Ajax
  UserUserId
  USersran9

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.