Fixed #12358 - csrf_token template tag does not work with flatpages.

Thanks to phretor for the report.



git-svn-id: http://code.djangoproject.com/svn/django/trunk@12381 bcc190cf-cafb-0310-a4f2-bffc1f526a37
This commit is contained in:
Luke Plant 2010-02-04 21:47:19 +00:00
parent 96a10094e8
commit def34da85c
1 changed files with 6 additions and 0 deletions

View File

@ -5,9 +5,15 @@ from django.http import HttpResponse, HttpResponseRedirect
from django.conf import settings from django.conf import settings
from django.core.xheaders import populate_xheaders from django.core.xheaders import populate_xheaders
from django.utils.safestring import mark_safe from django.utils.safestring import mark_safe
from django.views.decorators.csrf import csrf_protect
DEFAULT_TEMPLATE = 'flatpages/default.html' DEFAULT_TEMPLATE = 'flatpages/default.html'
# This view is called from FlatpageFallbackMiddleware.process_response
# when a 404 is raised, which often means CsrfViewMiddleware.process_view
# has not been called even if CsrfViewMiddleware is installed. So we need
# to use @csrf_protect, in case the template needs {% csrf_token %}.
@csrf_protect
def flatpage(request, url): def flatpage(request, url):
""" """
Flat page view. Flat page view.