projects / pgweb.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0a69f0b) | patch
Fix CSRF verification in /admin/mergeorg/ and /admin/purge/
authorMarti Raudsepp <marti@juffo.org>
Wed, 7 Nov 2012 20:01:33 +0000 (22:01 +0200)
committerMagnus Hagander <magnus@hagander.net>
Sun, 11 Nov 2012 12:19:29 +0000 (13:19 +0100)
commit6ba4f789ed69f12eb5f63ca8618b91563ee686a6
tree6ef9a277ba149d3dbf193677d5ba9172f4c32b8btree
parent0a69f0b831a894f9d0e5715257eaed4d1c0d7f68commit | diff
Fix CSRF verification in /admin/mergeorg/ and /admin/purge/

All templates using {% csrf_token %} need to be rendered with a
RequestContext.

This reverts most of commit 58a08f25901079c309d0713223e12c223b413d2c

Also permit POST requests to /search/ -- these aren't relevant to the
site itself, but this used to be allowed before.
pgweb/core/views.py diff | blob | blame | history
pgweb/search/views.py diff | blob | blame | history
templates/core/admin_mergeorg.html diff | blob | blame | history
templates/core/admin_purge.html diff | blob | blame | history
This is the code for the postgresql.org website