slinkp
commented
11 years ago All the forms in obadmin are vulnerable. Happened to see this while adding the zip importer. Almost might be easiest to add the csrf middleware and see what breaks.
Closed slinkp closed 11 years ago
slinkp
commented
11 years ago All the forms in obadmin are vulnerable. Happened to see this while adding the zip importer. Almost might be easiest to add the csrf middleware and see what breaks.
slinkp
commented
11 years ago Milestone Beta Release 1 deleted
slinkp
commented
11 years ago Ticket imported from Trac: http://developer.openblockproject.org/ticket/185 Reported by: slinkp
make sure we don't have anything vulnerable. we probably do. https://docs.djangoproject.com/en/1.3/ref/contrib/csrf/