novaburst/funquail
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Fixed auth/csrf issues

Browse source
This commit is contained in:
Agate 2020-07-03 11:35:11 +02:00
commit 50c3071c56
2 changed files with 8 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

10
api/funkwhale_api/users/views.py
View file

@ -128,11 +128,17 @@ def login(request):
)
serializer.save(request)
csrf.rotate_token(request)
return http.HttpResponse(status=200)
token = csrf.get_token(request)
response = http.HttpResponse(status=200)
response.set_cookie("csrftoken", token, max_age=None)
return response
def logout(request):
if request.method != "POST":
return http.HttpResponse(status=405)
auth.logout(request)
return http.HttpResponse(status=200)
token = csrf.get_token(request)
response = http.HttpResponse(status=200)
response.set_cookie("csrftoken", token, max_age=None)
return response