Test post requests on django, csrf_token

Question

I am trying test some of the post methods in my Django app, but due to the csrf_token, I can not test it without a browser. So I used @csrf_exempt decorator However I forget to remove those decorators in production. Is there a better way like this?

@csrf_exempt(in_debug_only=True)

So like this decorator is active only when the application is in debug mode. Or is there a better way to test post requests?

Like selenium might have some methods to do that?

Note: I m currently using Django 1.7.2 and Python 3.4.1

How exactly are you trying to test it? When I am running unit tests, Django doesn't enforce CSRF. — kasperd, May 14 '15 at 17:45
When you try to test a `post` view, due to the csrf security middle ware (really cool security feature ) , the request is rejected. Try — GIRISH RAMNANI, May 14 '15 at 17:51
I get default html , which on accepting should have been a json — GIRISH RAMNANI, May 14 '15 at 17:53

score 2 · Accepted Answer · edited May 23 '17 at 12:24

2

Inspired by this answer:

You can add a new file to your app, let's call it disable_csrf.py:

class DisableCSRF(object):
    def process_request(self, request):
        setattr(request, '_dont_enforce_csrf_checks', True)

Then you can edit your settings.py to add this:

if DEBUG:
    MIDDLEWARE_CLASSES += myapp.disable.DisableCSRF

Let me know if it worked.

edited May 23 '17 at 12:24

Community

1
1

answered May 14 '15 at 16:18

geckon

8,316
4
35
59

Test post requests on django, csrf_token

1 Answers1