Adding csrf token fields to the forgot password calls

2011-10-01 21:31:14 -05:00 · 2011-10-01 21:31:14 -05:00 · 4d7a93a493
commit 4d7a93a493
parent 88233cb282
2 changed files with 4 additions and 0 deletions
--- a/mediagoblin/templates/mediagoblin/auth/change_fp.html
+++ b/mediagoblin/templates/mediagoblin/auth/change_fp.html
@ -23,6 +23,8 @@

  <form action="{{ request.urlgen('mediagoblin.auth.verify_forgot_password') }}"
        method="POST" enctype="multipart/form-data">
+    {{ csrf_token }}
+
    <div class="grid_6 prefix_1 suffix_1 form_box">
      <h1>{% trans %}Enter your new password{% endtrans %}</h1>

--- a/mediagoblin/templates/mediagoblin/auth/forgot_password.html
+++ b/mediagoblin/templates/mediagoblin/auth/forgot_password.html
@ -23,6 +23,8 @@

  <form action="{{ request.urlgen('mediagoblin.auth.forgot_password') }}"
        method="POST" enctype="multipart/form-data">
+    {{ csrf_token }}
+
    <div class="grid_6 prefix_1 suffix_1 form_box">
      <h1>{% trans %}Enter your username or email{% endtrans %}</h1>