innov
/
django1
1
0
Fork 0
Code Issues Pull Requests 1 Projects Releases Wiki Activity
django1/django
History
Luke Plant 43c2ed0eb3 Fixed #12095 - login and other contrib views failing if template rendered using inclusion tag. 
The {% csrf_token %} tag is unable to get its value if a template is
rendered using an inclusion_tag, since that creates a brand new Context,
rather than using the existing one.  Since this is a common pattern, and we
need CSRF protection to be as simple and easy as possible, we special case
the csrf_token and copy it from the parent context to the new context.

A more elegant and general solution may appear in future, but this is good
enough for now.



git-svn-id: http://code.djangoproject.com/svn/django/trunk@11672 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 		2009-10-27 21:27:09 +00:00
..
bin Fixed #10102 -- Set svn:executable on daily_cleanup script. Thanks to John Scott for the report 2009-03-14 05:18:02 +00:00
conf Moved contrib.csrf.* to core code. 2009-10-27 00:36:34 +00:00
contrib Fixed #11057: having no actions in the admin (`actions=None`) no longer messes up the layout. Thanks, rvdrijst. 2009-10-27 20:56:12 +00:00
core Moved contrib.csrf.* to core code. 2009-10-27 00:36:34 +00:00
db Fixed #12079: Changed has_results to get a single result, thus preventing exists() from always returning True on backends that support chunked reads. 2009-10-25 16:32:07 +00:00
dispatch Fixed #11134: signals recievers that disconnect during their processing no longer mess things up for other handlers. Thanks, Honza Kral. 2009-05-20 16:13:55 +00:00
forms Fixed #11402: added a `QuerySet.exists()` method. Thanks, Alex Gaynor. 2009-10-24 00:28:39 +00:00
http Fixed #10687: fixed request parsing when upload_handlers is empty. Thanks, Armin Ronacher. 2009-05-08 17:22:34 +00:00
middleware Slight change to CSRF error messages to make debugging easier. 2009-10-27 14:04:21 +00:00
shortcuts Fixed #10194: added `django.shortcuts.redirect`, a do-what-I-mean redirect shortcut. See the docs at topics/http/shortcuts for details. 2009-03-21 13:09:13 +00:00
template Fixed #12095 - login and other contrib views failing if template rendered using inclusion tag. 2009-10-27 21:27:09 +00:00
templatetags Fixed #11270 -- Modified cache template tag to prevent the creation of very long cache keys. Thanks to 235 for the report and patch. 2009-06-18 15:04:00 +00:00
test Fixed #9977 - CsrfMiddleware gets template tag added, session dependency removed, and turned on by default. 2009-10-26 23:23:07 +00:00
utils Fixed #12060 - equality tests between User and SimpleLazyObject-wrapped User failed. 2009-10-20 14:11:08 +00:00
views Moved contrib.csrf.* to core code. 2009-10-27 00:36:34 +00:00
__init__.py Trunk is now 1.2 pre-alpha. 2009-07-30 19:57:49 +00:00