Mercurial > p > roundup > code

comparison website/issues/html/file.item.html @ 5291:f63a2b15e628

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Adding @csrf tokens to all forms using post method.
author John Rouillard <rouilj@ieee.org>
date Sun, 24 Sep 2017 21:17:51 -0400
parents c2d0d3e9099d
children 53e9694788f5
comparison
equal deleted inserted replaced
5290:33e1cf136f1d 5291:f63a2b15e628
64 <!-- <form method="POST" onSubmit="return submit_once()" 64 <!-- <form method="POST" onSubmit="return submit_once()"
65 enctype="multipart/form-data" 65 enctype="multipart/form-data"
66 tal:attributes="action context/designator" 66 tal:attributes="action context/designator"
67 tal:condition="python:request.user.hasPermission('SB: May Classify')"> 67 tal:condition="python:request.user.hasPermission('SB: May Classify')">
68 68
69 <input name="@csrf" type="hidden"
70 tal:attributes="value python:utils.anti_csrf_nonce()">
69 <input type="hidden" name="@action" value="spambayes_classify"> 71 <input type="hidden" name="@action" value="spambayes_classify">
70 <input type="submit" name="trainspam" value="Mark as SPAM" i18n:attributes="value"> 72 <input type="submit" name="trainspam" value="Mark as SPAM" i18n:attributes="value">
71 <input type="submit" name="trainham" value="Mark as HAM (not SPAM)" i18n:attributes="value"> 73 <input type="submit" name="trainham" value="Mark as HAM (not SPAM)" i18n:attributes="value">
72 </form>--> 74 </form>-->
73 75
Roundup Issue Tracker: http://roundup-tracker.org/