[snowy] Make openid_complete view csrf_exempt

From: Leon Handreke <leonh src gnome org>
To: commits-list gnome org
Cc:
Subject: [snowy] Make openid_complete view csrf_exempt
Date: Tue, 5 Apr 2011 12:36:22 +0000 (UTC)

commit 48fba8aa2739ff7d38f18e99667b3d9cbe9ed5f0
Author: Leon Handreke <leon handreke gmail com>
Date:   Tue Apr 5 13:06:04 2011 +0200

    Make openid_complete view csrf_exempt
    
    This allows logging in with OpenID providers that pass attributes as
    POST data rather than GET parameters. The login_complete view in
    django_openid_auth, which is wrapped by the openid_complete view also
    has this decorator set since revision 68 of django_openid_auth.

 accounts/views.py |    1 +
 1 files changed, 1 insertions(+), 0 deletions(-)
---
diff --git a/accounts/views.py b/accounts/views.py
index 9a50abf..238202c 100644
--- a/accounts/views.py
+++ b/accounts/views.py
@@ -107,6 +107,7 @@ def openid_begin(request, **kwargs):
     return django_openid_auth.views.login_begin(request, render_failure=render_openid_failure,
                                                    **kwargs)
 
+ csrf_exempt
 def openid_complete(request, **kwargs):
     """A wrapper view around the login_complete view in
     django_openid_auth that features a nicer error page"""

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]