def _enforce_csrf(self, request):
"""Make sure that we have a valid CSRF token.
Django restframework does validate this when using the
SessionAuthentication but since that also checks if the user is
authenticated we can't really use that
"""
reason = CSRFCheck().process_view(request, None, (), {})
if reason:
# CSRF failed, bail with explicit error message
raise PermissionDenied('CSRF Failed: %s' % reason)
评论列表
文章目录
