From 8787ade4f3f3adefd33237bf8ddfcfec4ca424eb Mon Sep 17 00:00:00 2001 From: Gareth Coles Date: Thu, 5 Apr 2018 09:08:47 +0100 Subject: Attempt to fix CSRF; add debug info to staff page --- pysite/route_manager.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'pysite/route_manager.py') diff --git a/pysite/route_manager.py b/pysite/route_manager.py index df7cbc36..b36ccadd 100644 --- a/pysite/route_manager.py +++ b/pysite/route_manager.py @@ -34,7 +34,7 @@ class RouteManager: self.app.secret_key = os.environ.get("WEBPAGE_SECRET_KEY", "super_secret") self.app.config["SERVER_NAME"] = os.environ.get("SERVER_NAME", "pythondiscord.local:8080") self.app.config["PREFERRED_URL_SCHEME"] = PREFERRED_URL_SCHEME - self.app.config["WTF_CSRF_CHECK_DEFAULT "] = False # We only want to protect specific routes + self.app.config["WTF_CSRF_CHECK_DEFAULT"] = False # We only want to protect specific routes self.app.before_request(self.db.before_request) self.app.teardown_request(self.db.teardown_request) -- cgit v1.2.3