Mercurial > p > roundup > code

comparison website/issues/html/user.index.html @ 5291:f63a2b15e628

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Adding @csrf tokens to all forms using post method.
author John Rouillard <rouilj@ieee.org>
date Sun, 24 Sep 2017 21:17:51 -0400
parents 20e0e5ce217f
children 447a7647f237
comparison
equal deleted inserted replaced
5290:33e1cf136f1d 5291:f63a2b15e628
66 <form style="padding:0" method="POST" 66 <form style="padding:0" method="POST"
67 tal:attributes="action string:user${user/id}"> 67 tal:attributes="action string:user${user/id}">
68 <input type="hidden" name="@template" value="index"> 68 <input type="hidden" name="@template" value="index">
69 <input type="hidden" name="@action" value="retire"> 69 <input type="hidden" name="@action" value="retire">
70 <input type="submit" value="retire" i18n:attributes="value"> 70 <input type="submit" value="retire" i18n:attributes="value">
71 <input name="@csrf" type="hidden"
72 tal:attributes="value python:utils.anti_csrf_nonce()">
71 </form> 73 </form>
72 </td> 74 </td>
73 </tr> 75 </tr>
74 </tal:block> 76 </tal:block>
75 <tr tal:condition="batch"> 77 <tr tal:condition="batch">
Roundup Issue Tracker: http://roundup-tracker.org/