问题
I am setting up my own Django server using this Digital Ocean tutorial. I created the Django framework following each step, and ran the server using this command:
./manage.py runserver 0.0.0.0:8000
When I tried to visit the IP at port 8000, the following error was shown:
DisallowedHost at /
Invalid HTTP_HOST header: 'XXX.XXX.XXX.XXX:8000'. You may need to add u'XXX.XXX.XXX.XXX' to ALLOWED_HOSTS.
(IP substituted with X's)
Why is this happening?
回答1:
In your settings.py, there is a list called ALLOWED_HOSTS. You need to add the IP address you see in the error to that list:
ALLOWED_HOSTS = ['XX.XX.XX.XX']
The port should not be added.
Explanation:
Django checks the Host header of the HTTP request for a url/ip address that is within the allowed hosts.
From the django website:
This is a security measure to prevent HTTP Host header attacks, which are possible even under many seemingly-safe web server configurations.
https://docs.djangoproject.com/en/dev/ref/settings/#allowed-hosts
回答2:
Include both ('www.name.com', 'ip.ip.ip.ip') Set Debug = True, then retry the IP & URL Address.
Go to the Traceback section, find the message [ raise DisallowedHost(msg) ] click -> ▼ Local vars
It will show the incoming domain name and the settings for allowed hosts:
*Variable Value
*allowed_hosts ['ip.ip.ip.ip', 'name.com']
*domain 'something.com'
*
Copy the incoming value into your settings.py. If the you see old settings restart the server\nginx
来源:https://stackoverflow.com/questions/40667519/why-is-django-throwing-error-disallowedhost-at