Hi Russ,
That's a great suggestion. I did add csrf tokens in all templates involved,
but still got the problem. Thsi makes me wonder whethere or not there is
somethign in django-forum's internals that causes the template system to
throw a fit even with the tags and middleware available.
Will look
On 14 ?.?. 2010, at 18:06, Sithembewena Lloyd Dube wrote:
> Hi Jonathan,
>
> Thanks for the tip. The rub with that is, we are using csrf tokens in the
> rest of our views. While authentication may still take care of basic
> security, removing csrf middleware would surely increase XSS risk?
Ye
Hi Jonathan,
Thanks for the tip. The rub with that is, we are using csrf tokens in the
rest of our views. While authentication may still take care of basic
security, removing csrf middleware would surely increase XSS risk?
2010/10/14 Jonathan Barratt
> On 14 ?.?. 2010, at 16:58, Sithembewena Ll
On Thu, Oct 14, 2010 at 5:58 PM, Sithembewena Lloyd Dube
wrote:
> Hi all,
>
> I just installed django-forum (http://code.google.com/p/django-forum/) in my
> Django 1.2.3. project and all went well (admin) until I got CSRF errors
> while trying to load a new forum I created in the admin.
> I added
On 14 ?.?. 2010, at 16:58, Sithembewena Lloyd Dube wrote:
> Hi all,
>
> I just installed django-forum (http://code.google.com/p/django-forum/) in my
> Django 1.2.3. project and all went well (admin) until I got CSRF errors while
> trying to load a new forum I created in the admin.
> I added @cs
5 matches
Mail list logo
