From: deyk Date: Tue, 15 May 2012 23:28:12 +0000 (-0700) Subject: Added some protective decorators. X-Git-Tag: 22.4~16 X-Git-Url: https://git.mdrn.pl/django-cas-provider.git/commitdiff_plain/6cc2732434fe282663257424f204329ec9f8c6c3?hp=840be9bb10bd63d3d22d2d825339729b0b9f1eb6 Added some protective decorators. --- diff --git a/cas_provider/views.py b/cas_provider/views.py index 9ceeca4..155189c 100644 --- a/cas_provider/views.py +++ b/cas_provider/views.py @@ -7,6 +7,10 @@ from urllib import urlencode import urllib2 import urlparse +from django.views.decorators.debug import sensitive_post_parameters +from django.views.decorators.cache import never_cache +from django.views.decorators.csrf import csrf_protect + from django.http import HttpResponse, HttpResponseRedirect from django.conf import settings from django.contrib.auth import login as auth_login, logout as auth_logout @@ -44,6 +48,9 @@ ERROR_MESSAGES = ( logger = logging.getLogger(__name__) +@sensitive_post_parameters() +@csrf_protect +@never_cache def login(request, template_name='cas/login.html', success_redirect=settings.LOGIN_REDIRECT_URL, warn_template_name='cas/warn.html', **kwargs):