csrf_exempt the api.

This commit is contained in:
Víðir Valberg Guðmundsson 2019-03-11 21:27:33 +01:00
parent d972ef2cef
commit 0f18b5de5c

View file

@ -1,6 +1,7 @@
from django.urls import include, path from django.urls import include, path
from django.contrib import admin from django.contrib import admin
from django.conf import settings from django.conf import settings
from django.views.decorators.csrf import csrf_exempt
from allauth.account.views import ( from allauth.account.views import (
LoginView, LoginView,
@ -66,7 +67,9 @@ urlpatterns = [
), ),
path('accounts/', include('allauth.urls')), path('accounts/', include('allauth.urls')),
path('admin/', admin.site.urls), path('admin/', admin.site.urls),
path('api/', GraphQLView.as_view(graphiql=True)),
# We don't need CSRF checks for the API
path('api/', csrf_exempt(GraphQLView.as_view(graphiql=True))),
path( path(
'camps/', 'camps/',