jlengrand/bugsink
1
0
Fork 0
mirror of https://github.com/jlengrand/bugsink.git synced 2026-03-10 08:01:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix warning on CSRF view

Browse Source 
When the CSRF view is rendered, no RequestContext is used. This means the token
used for the logout link on the regular base.html won't work.

> UserWarning: A {% csrf_token %} was used in a template, but the context did not
> provide the value.  This is usually caused by not using RequestContext.
This commit is contained in:
Klaas van Schelven
2025-04-09 14:12:29 +02:00
parent b59abaf213
commit d572ff3601
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
templates/403_csrf.html
View File

@@ -1,4 +1,4 @@
{% extends "base.html" %} {% extends "bare_base.html" %}
{% comment %} {% comment %}
Note on security: the basic principle is "the more you expose, the more an attacker knows." Note on security: the basic principle is "the more you expose, the more an attacker knows."
In this case, I think it should be fine, because all we expose here is stuff about mismatched hosts, and: In this case, I think it should be fine, because all we expose here is stuff about mismatched hosts, and: