Hi, I have just started to try Supertokens for a D...
# support-questions-legacyd
dekode
09/26/2023, 8:29 AMHi, I have just started to try Supertokens for a Django app with Angular frontend. The sign in works. I have the righr cors policy. I created a new POST api view and tested it with curl to work. However when I call the same endpoint with Angular, I get 403 Error. I have check AuthorisedHosts, CORS headers, CORS policy etc. but to no success. What I may be missing?
r
rp_st
09/26/2023, 8:30 AMhey @dekode what is the response body?
d
dekode
09/26/2023, 8:30 AM{
"detail": "CSRF Failed: Origin checking failed - http://localhost:3000 does not match any trusted origins."
}
r
rp_st
09/26/2023, 8:31 AMright. I think you are using djanogo auth as well. You should remove that and just use supertokens
d
dekode
09/26/2023, 8:31 AM Copy code
CORS_ORIGIN_WHITELIST = [
"http://localhost:3000"
]
CORS_ALLOW_CREDENTIALS = True
CORS_ORIGIN_ALLOW_ALL = False
ALLOWED_HOSTS = [
# development
'localhost',
'127.0.0.1',
]
CORS_ALLOWED_ORIGINS = [
"http://localhost:3000"
]
CORS_ALLOW_HEADERS: List[str] = list(default_headers) + [
"Content-Type"
] + get_all_cors_headers()dekode
09/26/2023, 8:32 AMYou mean remove "'django.contrib.auth.middleware.AuthenticationMiddleware',"
r
rp_st
09/26/2023, 8:32 AMyea i think so
d
dekode
09/26/2023, 8:33 AMYes. That worked. Thanks a lot. By The way, how do I add user profiles in Django if I do not use Django user table at all
r
rp_st
09/26/2023, 8:54 AMyou can override the sign up function on the backend and add users to your table
d
dekode
09/26/2023, 1:16 PMI am looking fore the docs in ThirdPart Passwordless recipe. The overriding signup was there in email+password recipe
r
rp_st
09/26/2023, 1:17 PM6 Views