Fixed #14565 - No csrf_token on 404 pages

Thanks to gvangool for report and patch. git-svn-id: http://code.djangoproject.com/svn/django/trunk@14356 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2010-10-26 18:09:20 +00:00 · 2010-10-26 18:09:20 +00:00 · 851f42ba27
parent 298f3d300e
commit 851f42ba27
1 changed files with 3 additions and 0 deletions
--- a/django/views/defaults.py
+++ b/django/views/defaults.py
@ -1,6 +1,8 @@
 from django import http
 from django.template import Context, RequestContext, loader
+from django.views.decorators.csrf import csrf_protect

+@csrf_protect
 def page_not_found(request, template_name='404.html'):
    """
    Default 404 handler.
@ -13,6 +15,7 @@ def page_not_found(request, template_name='404.html'):
    t = loader.get_template(template_name) # You need to create a 404.html template.
    return http.HttpResponseNotFound(t.render(RequestContext(request, {'request_path': request.path})))

+@csrf_protect
 def server_error(request, template_name='500.html'):
    """
    500 error handler.