我正在为我的网络应用程序使用 Django,并已改编了教程@ https://developer.twitter.com/en/docs/accounts-and-users/subscribe-account-activity/guides/securing-webhooks在 Python 3 中运行,但是我在我的观点中遇到了这个问题
from django.shortcuts import render
from django.http import HttpResponse, HttpRequest
import base64, hashlib, hmac, json
from django.views.decorators.csrf import csrf_exempt
from django.views.decorators.clickjacking import xframe_options_exempt
from django.views.decorators.http import require_GET
@csrf_exempt
@xframe_options_exempt
def twitter_webhook(request):
msg = request.GET.get('crc_token')
msg_bytes = msg.encode()
sha256_hash_digest =
hmac.new(b'bEfpTIneaasdf876asd9f87908709asdf76789689as7dfH', msg_bytes, digestmod=hashlib.sha256).digest()
resp = 'sha256=' + str(sha256_hash_digest)
twitter_response = {
'response_token': resp
}
return json.dumps(twitter_response)
'str' object has no attribute 'xframe_options_exempt'
我使用 pycharm 一步步调试了我的代码,一切正常,返回适当的哈希值,直到它被点击劫持中间件捕获为止。
Request Method: GET
Request URL: http://127.0.0.1:8000/twitter?crc_token=1230983450923485
Django Version: 2.1.4
Exception Type: AttributeError
Exception Value:
'str' object has no attribute 'xframe_options_exempt'
Exception Location:
C:\Users\micha\AppData\Local\Programs\Python\Python37\lib\site-
packages\django\views\decorators\clickjacking.py in wrapped_view, line 51
Python Executable:
C:\Users\micha\AppData\Local\Programs\Python\Python37\python.exe
Python Version: 3.7.1
Python Path:
['C:\\Users\\micha\\Documents\\Projects\\sinclaire_webhooks',
'C:\\Program Files\\JetBrains\\PyCharm 2018.3.1\\helpers\\pydev',
'C:\\Users\\micha\\Documents\\Projects\\sinclaire_webhooks',
'C:\\Program Files\\JetBrains\\PyCharm '
'2018.3.1\\helpers\\third_party\\thriftpy',
'C:\\Program Files\\JetBrains\\PyCharm 2018.3.1\\helpers\\pydev',
'C:\\Users\\micha\\.PyCharm2018.3\\system\\cythonExtensions',
'C:\\Users\\micha\\AppData\\Local\\Programs\\Python\\Python37\\python37.zip',
'C:\\Users\\micha\\AppData\\Local\\Programs\\Python\\Python37\\DLLs',
'C:\\Users\\micha\\AppData\\Local\\Programs\\Python\\Python37\\lib',
'C:\\Users\\micha\\AppData\\Local\\Programs\\Python\\Python37',
'C:\\Users\\micha\\AppData\\Local\\Programs\\Python\\Python37\\lib\\site- packages',
'C:\\Program Files\\JetBrains\\PyCharm '
'2018.3.1\\helpers\\pycharm_matplotlib_backend']
Server time: Sun, 16 Dec 2018 17:58:20 +0000
我已经搜索过,但找不到任何明确的内容来引导我解决这个问题,并且对于 python 和 django 来说都是半新手,任何帮助将不胜感激!
最佳答案
问题是您直接从 View 返回 JSON 字符串,这会导致 xframe_options_exempt
装饰器失败,因为它需要 HttpResponse
。 Django View 函数 should return an HttpResponse
.
您可以修改 View 以返回 HttpResponse
,如下所示:
return HttpResponse(json.dumps(twitter_response), content_type='application/json')
或者使用JsonResponse
(HttpResponse
的子类)并让Django处理字典到JSON的转换:
from django.http.response import JsonResponse
...
@csrf_exempt
@xframe_options_exempt
def twitter_webhook(request):
...
twitter_response = {
'response_token': resp
}
return JsonResponse(twitter_response) # No need to use json.dumps()
关于django - Twitter、Webhooks 和 Django CRC 检查 --> 'str' 对象没有属性 'xframe_options_exempt',我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/53805203/