1. 首页
  2. 问题列表
  3. Django和Ajax Push Engine(APE):不安全的JavaScript尝试使用URL访问框架
提问者:小点点

Django和Ajax Push Engine(APE):不安全的JavaScript尝试使用URL访问框架


我正在尝试为我的Django项目设置一个APE服务器。

>

  • 我按照APE wiki中的设置说明:简单的APE配置

    不过,我不得不更改端口。我的虚拟主机配置如下所示:

    NameVirtualHost 127.0.0.1:8100
Listen 127.0.0.1:8100
<VirtualHost 127.0.0.1:8100>
    ServerName local.ape-project.org
    ServerAlias ape.local.ape-project.org
    ServerAlias *.ape.local.ape-project.org

    DocumentRoot "/path/to/my/project/ape-jsf/"
</VirtualHost>

    运行http://local.ape-project.org:8100/Tools/Check/成功运行所有测试并返回消息:All test done。现在您可以使用您的APE\o/

    Django在端口8000上运行:

    pythonmanage.pyrunserver_plus0.0.0.0:8000

    我遵循了第一个教程的说明:教程:换色器

    我将JavaScript代码放入我的django项目中(包含Clients/JavaScript. js)。

    当我打开页面时,我收到这个错误:

    Unsafe JavaScript attempt to access frame with URL http://2.ape.local.ape-project.org:6969/?[{%22cmd%22:%22script%22,%22params%22:{%22domain%22:%22127.0.0.1%22,%22scripts%22:[%22http://local.ape-project.org:8100/static/ape-jsf/Source/mootools-core.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Core/APE.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Core/Events.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Core/Core.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Pipe/Pipe.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Pipe/PipeProxy.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Pipe/PipeMulti.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Pipe/PipeSingle.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Request/Request.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Request/Request.Stack.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Request/Request.CycledStack.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Transport/Transport.longPolling.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Transport/Transport.SSE.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Transport/Transport.XHRStreaming.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Transport/Transport.JSONP.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Core/Utility.js%22,%22http://local.ape-project.org:8100/static/ape-jsf/Source/Core/JSON.js%22]}}]
from frame with URL http://127.0.0.1:8000/mydjangoapp/somepage/. Domains, protocols and ports must match.

    我知道不同的域和端口存在安全问题。

    但是这应该如何工作呢?


    • 共1个答案

    匿名用户

    事实证明,很难配置同时运行Aperunserver的环境。这个问题的解决方案是使用另一个Web服务器。

    我选择了Apache和mod_wsgi模块:

    • mod_wsgi教程:与Django集成
    • 小心静态文件:如何将Django与Apache和mod_wsgi一起使用

    相关问题



    热门标签
    Java JavaScript Python PHP C# Android Html jQuery C++ Css IOS MySQL NodeJS