Only allow requests from single site in Django Rest Framework











up vote
0
down vote

favorite












For illustrative purposes let's say I have a website at https://www.signup.com that let's users sign up for an email list. After the user enters their email and hits 'Submit,' signup.com sends POST request to a Django Rest Framework API hosted at https://www.manager.com:



{ "email" : "fake@whatever.com" }


Then the server adds that email to the database.



My question is: what's the best way to ensure that only signup.com is able to successfully send POST requests to manager.com?










share|improve this question






















  • I would have a look at CORS and especially the Access Control Allow Origin option.
    – Derlin
    yesterday

















up vote
0
down vote

favorite












For illustrative purposes let's say I have a website at https://www.signup.com that let's users sign up for an email list. After the user enters their email and hits 'Submit,' signup.com sends POST request to a Django Rest Framework API hosted at https://www.manager.com:



{ "email" : "fake@whatever.com" }


Then the server adds that email to the database.



My question is: what's the best way to ensure that only signup.com is able to successfully send POST requests to manager.com?










share|improve this question






















  • I would have a look at CORS and especially the Access Control Allow Origin option.
    – Derlin
    yesterday















up vote
0
down vote

favorite









up vote
0
down vote

favorite











For illustrative purposes let's say I have a website at https://www.signup.com that let's users sign up for an email list. After the user enters their email and hits 'Submit,' signup.com sends POST request to a Django Rest Framework API hosted at https://www.manager.com:



{ "email" : "fake@whatever.com" }


Then the server adds that email to the database.



My question is: what's the best way to ensure that only signup.com is able to successfully send POST requests to manager.com?










share|improve this question













For illustrative purposes let's say I have a website at https://www.signup.com that let's users sign up for an email list. After the user enters their email and hits 'Submit,' signup.com sends POST request to a Django Rest Framework API hosted at https://www.manager.com:



{ "email" : "fake@whatever.com" }


Then the server adds that email to the database.



My question is: what's the best way to ensure that only signup.com is able to successfully send POST requests to manager.com?







django django-rest-framework






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked yesterday









garrettedel

5814




5814












  • I would have a look at CORS and especially the Access Control Allow Origin option.
    – Derlin
    yesterday




















  • I would have a look at CORS and especially the Access Control Allow Origin option.
    – Derlin
    yesterday


















I would have a look at CORS and especially the Access Control Allow Origin option.
– Derlin
yesterday






I would have a look at CORS and especially the Access Control Allow Origin option.
– Derlin
yesterday



















active

oldest

votes











Your Answer






StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














 

draft saved


draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53401772%2fonly-allow-requests-from-single-site-in-django-rest-framework%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown






























active

oldest

votes













active

oldest

votes









active

oldest

votes






active

oldest

votes
















 

draft saved


draft discarded



















































 


draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53401772%2fonly-allow-requests-from-single-site-in-django-rest-framework%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







Popular posts from this blog

Berounka

Sphinx de Gizeh

Different font size/position of beamer's navigation symbols template's content depending on regular/plain...