aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--mediagoblin/meddleware/csrf.py5
1 files changed, 5 insertions, 0 deletions
diff --git a/mediagoblin/meddleware/csrf.py b/mediagoblin/meddleware/csrf.py
index ea8372bf..8e8ec7c4 100644
--- a/mediagoblin/meddleware/csrf.py
+++ b/mediagoblin/meddleware/csrf.py
@@ -16,6 +16,7 @@
import hashlib
import random
+import logging
from webob.exc import HTTPForbidden
from wtforms import Form, HiddenField, validators
@@ -23,6 +24,8 @@ from wtforms import Form, HiddenField, validators
from mediagoblin import mg_globals
from mediagoblin.meddleware import BaseMeddleware
+_log = logging.getLogger(__name__)
+
# Use the system (hardware-based) random number generator if it exists.
# -- this optimization is lifted from Django
if hasattr(random, 'SystemRandom'):
@@ -126,6 +129,7 @@ class CsrfMeddleware(BaseMeddleware):
if cookie_token is None:
# the CSRF cookie must be present in the request
+ _log.error('CSRF cookie not present')
return HTTPForbidden()
# get the form token and confirm it matches
@@ -139,4 +143,5 @@ class CsrfMeddleware(BaseMeddleware):
# either the tokens didn't match or the form token wasn't
# present; either way, the request is denied
+ _log.error('CSRF validation failed')
return HTTPForbidden()
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-08 19:12:48 +0000