#django

jordan87: you need to tell it what app/module to run tests for, as I recall

tbaxter: is the initial dict typically empty?

dunno.

I would add to it though

is there a way to get the timezone of the end user? is it in the request object somewhere?

FunkyBob: hi

v0lksman: well, how do you expect to know the end user’s time zone?

tbaxter: I'm able to run with Tools > run manage.py task > test no issues

hrm

tbaxter: maybe something sent by the browser based on the users locale?

how to do this >_>

tbaxter: but when I try to set up tests under configuration, it doesn't work

v0lksman: but other than geolocation, which is poorly supported and easy to turn off, how would the browser know locale? And which locale? Where they’re at most, or where they are now? For example, if I’m filling out an incident report form while I’m on the road, which is relevant, my home locale, the inciden’ts locale, or where I”m at now.

Timezones are hard.

tbaxter: they are...but in my case I'm not that picky...the "current" location timezone is good enough for my puroposes.

I guess the answer is no. so I'll dig another route (they provide postal code, maybe there is a way to determin from that)

i'm using django-summernote in my project. works fine on my pc. but when i run on digital ocean, the editor doesn't show. I traced the problem to the html file created by summernote. It has a path "/static/django_summernote/summernote.min.js". How can I fix this?

interesting: https://github.com/adamcharnock/django-tz-detect

anyone from newfoundland in here/

?

nvm...this works

nm. i added a symbolic link

but isn't this a bug?

surfnturf: sounds like it

it's not django though so you'd have to open with the author

can i get some help with a model? i want to save an image from a url. here’s what i have: https://dpaste.de/az0D

surfnturf: perhaps you need to collectstatic on your production server?

random nitpick

anyone else notice the "site" element (leftmost except djangocms logo)

is not aligned nicely?

tbaxter: i tried that. didn't work

It's the only thing not li>a>span, (it's just li>a)

idk why

it's possible i have not configured nginx properly

seems like such an obvious oversight :\

coulld be solved anther way

“didn’t work” is a useless phrase

tbaxter: lol. well i did collectstatic, reran the project and the editor still didn't show

surfnturf: it seems likely you don’t have your production static assets serving correctly.

any idea on how to exclude django tests in pycharm. Or set a different interpreter for them?

tbaxter: yeah I wouldn't be surprised. I'm newbie with nginx and gunicorn also

stickperson: you definitely need upload_to, and since you didn’t provide a traceback we have no idea what your error is

Does Django ever cache POSTs?

tbaxter: ah, duh. let me get a traceback. as for upload_to, is there a convention? i’m going to just input a bunch of beer.

upload_to is where ever you want the uploaded media to go. See the filefield/imagefield docs

> cache POSTs

why would you do that jfkdaddy ?

tbaxter: here’s an updated dpaste. https://dpaste.de/ALm3

dyl: I just want to make sure it never will.

POSTs are almost always stateful.

also, they're not defined as idempotent.

(unlike GET, HEAD, PUT, DELETE)

so there's no possibility to cache them.

And no, Django doesn't cache any requests by default at all.

I usually use Varnish + ESIs

I'm getting csrf failure on PATCH and PUT request with restframework...I feel like it should be obvious what Im doing wrong but I see the csrf token in the request body just fine...any ideas?

Check your <form> tags.

Your {% csrf_token %} might be rendering outside it.

{% csrf_token %}

it's an ajax PUT/PATCH request and its rendering fine

{{ my_form }}

tbaxter: you were right, my nginx was serving out /static instead of /staticfiles

first thing I checked

doesn't work.

hmm

paste?

paste it, I'll brb

Also, pop open your web debugger and intercept the request

check that the csrf token is indeed valid.

and present.

surfnturf: huh?

mmikeym If you can't figure it out, you ought to consider the X-CSRFToken header.

Might be significantly easier for AJAX stuff :)

to be honest I just never really used PUT or PATCH much before

tbaxter: you were right that i did not configure my production server properly.

so it wasn't a bug. pilot error

Thanks, dyl.

mmikeym hmm

dyl: works fine for POST requests....even from the same page

csrf is in the data from chromes console

Oh you know what.

Those views are probably GETTING the csrf token

it's just *not the right one*.

ah that somewhat makes sense, but isn't the csrf token just set on a session basis since the user is logged in?

CSRF is a cookie

(session independent nonce)

It's session independent because it's supposed to prevent exploiting a users active session.

"This cookie is set by CsrfViewMiddleware. It is meant to be permanent, but since there is no way to set a cookie that never expires, it is sent with every response that has called django.middleware.csrf.get_token()"

nmd, it's one token.

So I'm trying to run all of my unit tests with my remote interpreter, but don't want my selenium tests to use that remote interpreter since it doesn't have any browsers (or GUI). is there an elegant way to handle this in pycharm/intellij (or even command line?)

mmikeym I'd just do this:

$.ajaxSetup({ beforeSend: (xhr, settings) => { xhr.setRequestHeader("X-CSRFToken", getCookie('csrftoken'); })

but you know, using ES5 syntax :p

but

make sure you check the domain in that beforesend!!!

Do not leak your token!!!

Should only go to your own domain.

Do permissions and groups have to be applied to User model instances?

They're not "applied". Users and Groups have permission sets. They're M2M.

dyl: thanks will give it a go

Might solve it, if not look at your requests on both ends

Try the Werkzeug debugger to inspect state on crash

Django Debug Toolbar is also helpful for viewing context and ajax stuff

dyl: If you had another model like TeamUser that had an fk to your User model could you give that model permissions?

Or would it have to be the User model?

I’d put it on the user.

tbaxter: But what if your user can have multiple teams and different permissions in each team?