django error ajax CSRF token missing or incorrect without jquery

Question

django csrf_token error 403 with js

    var httpRequest = new XMLHttpRequest();

    var links = document.querySelectorAll('form')

    for (var i = 0; i <  links.length; i++) {
        var link = links[i]
        link.addEventListener('submit', function(e) {
            e.preventDefault()

            httpRequest.onreadystatechange = function() {
                if (httpRequest.readyState === 4) {
                    document.getElementById('result').innerHTML = httpRequest.responseText
                }
            }

            httpRequest.open('POST', this.getAttribute('action'), true)
            httpRequest.send()

        })
    }

Answer 1

You should be able to set headers on XMLHttpRequest by doing:

var token = '{{csrf_token}}';

var httpRequest = new XMLHttpRequest();
httpRequest.setRequestHeader("X-CSRFToken", token);