<h1>Forbidden <span>(403)</span> </h1> <p>CSRF verification

1. <h1>Forbidden
2. <span>(403)</span>
3. </h1>
4. <p>CSRF verification failed. Request aborted.</p>
5.  
6. static string getCookieHeaderFromURL(string email, string password, string formUrl)
7. {
8. //start getting csrfmiddlewaretoken
9. string loginHTML = getHTMLFromURL(formUrl);
10. int beginIndex = loginHTML.IndexOf(@"<input type='hidden' name='csrfmiddlewaretoken' value='");
11. string temp = loginHTML.Substring(beginIndex);
12. beginIndex = temp.IndexOf(@"value='");
13. temp = temp.Substring(beginIndex);
14. string csrftoken = temp.Substring(7, 32);
15. //end getting csrfmiddlewaretoken
16.  
17. //start the POST
18. string formParams = string.Format("csrfmiddlewaretoken={0}&username={1}&password={2}&next=", csrftoken, email, password);
19. string cookieHeader;
20. HttpWebRequest req = (HttpWebRequest)WebRequest.Create(formUrl);
21. req.Host = "fundraiser.kdvs.org";
22. req.ContentType = "application/x-www-form-urlencoded";
23. req.Method = "POST";
24. req.Referer = formUrl;
25. byte[] bytes = Encoding.ASCII.GetBytes(formParams);
26. req.ContentLength = bytes.Length;
27. using (Stream os = req.GetRequestStream())
28. {
29. os.Write(bytes, 0, bytes.Length);
30. }
31. HttpWebResponse resp = (HttpWebResponse)req.GetResponse();
32. cookieHeader = resp.Headers["Set-cookie"];
33. return cookieHeader;
34. }
35.  
36. HttpWebResponse resp = (HttpWebResponse)req.GetResponse();