Add CSRF protection to all templates

2025-12-22 22:29:34 +00:00 · 2010-11-05 17:02:00 +00:00
parent 3505ed5d96
commit ab29b9653d
16 changed files with 16 additions and 0 deletions
--- a/templates/hr/applications/accept.html
+++ b/templates/hr/applications/accept.html
@@ -7,6 +7,7 @@
 <form action="{% url hr.views.accept_application applicationid %}" method="post">
 <table>
 {{ form.as_table }}
+{% csrf_token %}
 </table>
 <input type="submit" value="Apply" />
 </form>
--- a/templates/hr/applications/add.html
+++ b/templates/hr/applications/add.html
@@ -9,6 +9,7 @@
 <table>
 {{ form.as_table }}
 </table>
+{% csrf_token %}
 <input type="submit" value="Apply" />
 </form>
 {% endblock %}
--- a/templates/hr/applications/add_message.html
+++ b/templates/hr/applications/add_message.html
@@ -7,6 +7,7 @@
 <table>
 {{ form.as_table }}
 </table>
+{% csrf_token %}
 <input type="submit" value="Apply" />
 </form>
 {% endblock %}
--- a/templates/hr/applications/add_note.html
+++ b/templates/hr/applications/add_note.html
@@ -7,6 +7,7 @@
 <table>
 {{ form.as_table }}
 </table>
+{% csrf_token %}
 <input type="submit" value="Apply" />
 </form>
 {% endblock %}
--- a/templates/hr/applications/reject.html
+++ b/templates/hr/applications/reject.html
@@ -8,6 +8,7 @@
 <table>
 {{ form.as_table }}
 </table>
+{% csrf_token %}
 <input type="submit" value="Apply" />
 </form>
 {% endblock %}
--- a/templates/hr/recommendations/add.html
+++ b/templates/hr/recommendations/add.html
@@ -11,6 +11,7 @@ The person you are recommending needs to have created their application before y
 <table>
 {{ form.as_table }}
 </table>
+{% csrf_token %}
 <input type="submit" value="Add Recommendation" />
 </form>
 {% endblock %}