fnp / wolnelektury.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
csrf and honeypots
[wolnelektury.git] / apps / wolnelektury_core / templates / piston / authorize_token.html
diff --git a/apps/wolnelektury_core/templates/piston/authorize_token.html b/apps/wolnelektury_core/templates/piston/authorize_token.html
index 4e45207..0fd06f8 100755 (executable)
--- a/apps/wolnelektury_core/templates/piston/authorize_token.html
+++ b/apps/wolnelektury_core/templates/piston/authorize_token.html
@@ -10,6 +10,7 @@
     <p>{% blocktrans %}Confirm to authorize access to Wolne Lektury as user <strong>{{ user}}</strong>.{% endblocktrans %}</p>
 
     <form action="{% url piston.authentication.oauth_user_auth %}" method="POST">
+    {% csrf_token %}
       {{ form.as_p }}
       <button type="submit">Confirm</button>
     </form>