POST方法提交表单时候 CSRF verification failed. Request aborted. CSRF token missing or incorrect.doc

HYPERLINK /wenjiashe521/archive/2012/08/29/2662041.html BUG！！！====== POST方法提交表单的时候 CSRF verification failed. Request aborted. CSRF token missing or incorrect. Forbidden (403) CSRF verification failed. Request aborted. Help Reason given for failure: CSRF token missing or incorrect. In general, this can occur when there is a genuine Cross Site Request Forgery, or when Djangos CSRF mechanism has not been used correctly. For POST forms, you need to ensure: Your browser is accepting cookies. The view function uses RequestContext for the template, instead of Context. In the template, there is a {% csrf_token %} template tag inside each POST form that targets an internal URL. If you are not using CsrfViewMiddleware, then you must use csrf_protect on any views that use the csrf_token template tag, as well as those that accept the POST data. Youre seeing the help section of this page because you have DEBUG = True in your Django settings file. Change that to False, and only the initial error message will be displayed. You can customize this page using the CSRF_FAILURE_VIEW setting. 解决方法： 1 In the template, there is a?{% csrf_token %}?template tag inside each POST form that targets an internal URL.在表单里加上{% csrf_token %}。 2 在setting.py 中设置文件如下： MIDDLEWARE_CLASSES = ( mon.CommonMiddleware, django.contrib.sessions.middleware.SessionMiddleware, django.middleware.csrf.CsrfViewMiddleware, 新加入 DJANGO = 1.3 django.contrib.auth.middleware.AuthenticationMiddleware, django.contrib.messages.middleware.MessageMiddleware, django.middleware.csrf.CsrfResponseMiddleware 新加入 DJANGO 1.4 # Uncomment the next line for simple clickjacking protection: # django.middleware.clickjacking.XFrameOptionsMiddleware, ) ?但是如果在1.4版本中加入的话又会出现以下问题： Traceback (most recent call last): File /usr/lib/python2.7/wsgiref/handlers.py, line 85, in run self.result = application(self.environ, self.start_response) File /usr/lib/pyth