Django provides several decorators that can be applied to views to support various HTTP features.
Allowed HTTP methods
The decorators in django.views.decorators.http can be used to restrict access to views based on the request
method. These decorators will return a django.http.HttpResponseNotAllowed if the conditions are not
met.
require_http_methods(request_method_list)
Decorator to require that a view only accept particular request methods. Usage:
from django.views.decorators.http import require_http_methods
@require_http_methods(["GET", "POST"])
def my_view(request):
# I can assume now that only GET or POST requests make it this far
# ...
pass
Note that request methods should be in uppercase.
require_GET()
Decorator to require that a view only accept the GET method.
require_POST()
Decorator to require that a view only accept the POST method.
require_safe()
Decorator to require that a view only accept the GET and HEAD methods. These methods are commonly
considered "safe" because they should not have the significance of taking an action other than retrieving the
requested resource.
Note: Django will automatically strip the content of responses to HEAD requests while leaving the headers unchanged,
so you may handle HEAD requests exactly like GET requests in your views. Since some software, such
as link checkers, rely on HEAD requests, you might prefer using require_safe instead of require_GET.
0 件のコメント:
コメントを投稿