graphql-python · nealedj · Oct 30, 2017
diff --git a/graphene_django/templates/graphene/graphiql.html b/graphene_django/templates/graphene/graphiql.html
@@ -23,12 +23,10 @@
   <script src="//cdn.jsdelivr.net/graphiql/{{graphiql_version}}/graphiql.min.js"></script>
 </head>
 <body>
+  {% csrf_token %}
   <script>
     // Parse the cookie value for a CSRF token
-    var csrftoken;
-    var cookies = ('; ' + document.cookie).split('; csrftoken=');
-    if (cookies.length == 2)
-      csrftoken = cookies.pop().split(';').shift();
+    var csrftoken = document.querySelector("[name=csrfmiddlewaretoken]").value;
 
     // Collect the URL parameters
     var parameters = {};