Issue 361 Initial implementation of CSRF protection middleware

author: Nathan Yergler <nathan@yergler.net> 2011-09-04 18:15:52 -0700
committer: Nathan Yergler <nathan@yergler.net> 2011-09-04 18:15:52 -0700
commit: f1226c98c44119261b6e1a5652d32e49eb912a53 (patch)
tree: 3c55e31bfb75a4fe91909dfa694e7a4c976572f3 /mediagoblin/util.py
parent: 0c8a30e61d494b2ec7ee75e5928f6f9d72a31ae4 (diff)
download: mediagoblin-f1226c98c44119261b6e1a5652d32e49eb912a53.tar.lz
mediagoblin-f1226c98c44119261b6e1a5652d32e49eb912a53.tar.xz
mediagoblin-f1226c98c44119261b6e1a5652d32e49eb912a53.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/mediagoblin/util.py b/mediagoblin/util.py
index e391b8b0..bc72f8df 100644
--- a/mediagoblin/util.py
+++ b/mediagoblin/util.py
@@ -39,6 +39,7 @@ from wtforms.form import Form
 from mediagoblin import mg_globals
 from mediagoblin import messages
 from mediagoblin.db.util import ObjectId
+from mediagoblin.middleware.csrf import render_csrf_form_token
 
 from itertools import izip, count
 
@@ -125,6 +126,8 @@ def render_template(request, template_path, context):
     template = request.template_env.get_template(
         template_path)
     context['request'] = request
+    context['csrf_token'] = render_csrf_form_token(request)
+
     rendered = template.render(context)
 
     if TESTS_ENABLED:
author	Nathan Yergler <nathan@yergler.net>	2011-09-04 18:15:52 -0700
committer	Nathan Yergler <nathan@yergler.net>	2011-09-04 18:15:52 -0700
commit	f1226c98c44119261b6e1a5652d32e49eb912a53 (patch)
tree	3c55e31bfb75a4fe91909dfa694e7a4c976572f3 /mediagoblin/util.py
parent	0c8a30e61d494b2ec7ee75e5928f6f9d72a31ae4 (diff)
download	mediagoblin-f1226c98c44119261b6e1a5652d32e49eb912a53.tar.lz mediagoblin-f1226c98c44119261b6e1a5652d32e49eb912a53.tar.xz mediagoblin-f1226c98c44119261b6e1a5652d32e49eb912a53.zip