Merge branch '195-csrf-verification-failed-csrf-cookie-when-submitting-forms' into 'master'

getting rid of csrf validation on this mixin the right way, decorating dispatch Closes #195 See merge request !202

Merge branch '195-csrf-verification-failed-csrf-cookie-when-submitting-forms' into 'master'
getting rid of csrf validation on this mixin the right way, decorating dispatch Closes #195 See merge request !202
01f23e50 · okhin · b676813b · 3a42ab4a · 01f23e50 · 01f23e50
Commit 01f23e50 authored May 22, 2017 by okhin 🚴
Showing with 5 additions and 4 deletions

src/memopol/templates/_position_form_modal.html src/memopol/templates/_position_form_modal.html +1 -4

src/representatives_positions/views.py src/representatives_positions/views.py +4 -0

No files found.
--- a/src/memopol/templates/_position_form_modal.html
+++ b/src/memopol/templates/_position_form_modal.html
@@ -13,9 +13,6 @@
        </div>

        <div class="modal-body">
-
-          {% csrf_token %}
-
          <div class="row">
            <div class="col-sm-12">
              <div class="well well-sm text-justify">{% include "text/position_info.html" %}</div>

--- a/src/representatives_positions/views.py
+++ b/src/representatives_positions/views.py
@@ -17,6 +17,10 @@ class PositionFormMixin(generic.View):
    position_created = False

    @csrf_exempt
+    def dispatch(self, request, *args, **kwargs):
+        return super(PositionFormMixin, self).dispatch(
+            request, *args, **kwargs)
+
    def post(self, request, *args, **kwargs):
        if 'position-representatives' in request.POST:
            self.position_form = PositionForm(request.POST, prefix='position')