added safe=False to JsonResponse

2025-08-05 04:50:12 +03:00 · 2017-03-03 05:32:47 -07:00 · 2017-03-03 05:32:47 -07:00 · 06feaac4da
commit 06feaac4da
parent 9cace70a1e
1 changed files with 6 additions and 6 deletions
--- a/docs/tutorial/1-serialization.md
+++ b/docs/tutorial/1-serialization.md
@ -235,15 +235,15 @@ The root of our API is going to be a view that supports listing all the existing
        if request.method == 'GET':
            snippets = Snippet.objects.all()
            serializer = SnippetSerializer(snippets, many=True)
-            return JsonResponse(serializer.data)
+            return JsonResponse(serializer.data, safe=False)

        elif request.method == 'POST':
            data = JSONParser().parse(request)
            serializer = SnippetSerializer(data=data)
            if serializer.is_valid():
                serializer.save()
-                return JsonResponse(serializer.data, status=201)
-            return JsonResponse(serializer.errors, status=400)
+                return JsonResponse(serializer.data, safe=False, status=201)
+            return JsonResponse(serializer.errors,safe=False, status=400)

 Note that because we want to be able to POST to this view from clients that won't have a CSRF token we need to mark the view as `csrf_exempt`.  This isn't something that you'd normally want to do, and REST framework views actually use more sensible behavior than this, but it'll do for our purposes right now.

@ -261,15 +261,15 @@ We'll also need a view which corresponds to an individual snippet, and can be us

        if request.method == 'GET':
            serializer = SnippetSerializer(snippet)
-            return JsonResponse(serializer.data)
+            return JsonResponse(serializer.data, safe=False)

        elif request.method == 'PUT':
            data = JSONParser().parse(request)
            serializer = SnippetSerializer(snippet, data=data)
            if serializer.is_valid():
                serializer.save()
-                return JsonResponse(serializer.data)
-            return JsonResponse(serializer.errors, status=400)
+                return JsonResponse(serializer.data, safe=False)
+            return JsonResponse(serializer.errors, safe=False, status=400)

        elif request.method == 'DELETE':
            snippet.delete()