eapil/pr_manager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

禁用CSRF保护,实施更强大的JSON解析!伟大变革!

Browse Source
This commit is contained in:
张建平 2025-02-25 16:07:50 +08:00
parent d9d20d478d
commit 3daf5973d0
2 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
apps/pr/views.py
View File

@ -1,3 +1,5 @@
import json
from pr import models from pr import models
from django.views import View from django.views import View
from django.http import JsonResponse from django.http import JsonResponse
@ -38,7 +40,7 @@ def load_project_config(
class WebHookView(View): class WebHookView(View):
def post(self, request): def post(self, request):
data = request.POST data = json.loads(request.body.decode('utf-8'))
if not data: if not data:
return JsonResponse(status=400, data={"error": "Invalid JSON"}) return JsonResponse(status=400, data={"error": "Invalid JSON"})

2
pr_manager/settings.py
View File

@ -54,7 +54,7 @@ MIDDLEWARE = [
"django.middleware.security.SecurityMiddleware", "django.middleware.security.SecurityMiddleware",
"django.contrib.sessions.middleware.SessionMiddleware", "django.contrib.sessions.middleware.SessionMiddleware",
"django.middleware.common.CommonMiddleware", "django.middleware.common.CommonMiddleware",
"django.middleware.csrf.CsrfViewMiddleware", # "django.middleware.csrf.CsrfViewMiddleware",
"django.contrib.auth.middleware.AuthenticationMiddleware", "django.contrib.auth.middleware.AuthenticationMiddleware",
"django.contrib.messages.middleware.MessageMiddleware", "django.contrib.messages.middleware.MessageMiddleware",
"django.middleware.clickjacking.XFrameOptionsMiddleware", "django.middleware.clickjacking.XFrameOptionsMiddleware",