Fix CSRF tokens for datasync restart forms

2016-12-14 18:52:12 -06:00 · 2016-12-14 18:52:12 -06:00 · ef649d8c96
parent 4ed522ae47
commit ef649d8c96
2 changed files with 2 additions and 0 deletions
--- a/tailbone/templates/datasync/changes/index.mako
+++ b/tailbone/templates/datasync/changes/index.mako
@ -18,6 +18,7 @@

 <%def name="grid_tools()">
  ${h.form(url('datasync.restart'), name='restart-datasync')}
+  ${h.csrf_token(request)}
  <button type="submit">Restart DataSync</button>
  ${h.end_form()}
 </%def>
--- a/tailbone/templates/mobile/datasync.mako
+++ b/tailbone/templates/mobile/datasync.mako
@ -4,5 +4,6 @@
 <%def name="title()">DataSync</%def>

 ${h.form(url('datasync.restart'))}
+${h.csrf_token(request)}
 ${h.submit('restart', "Restart DataSync Daemon", id='datasync-restart')}
 ${h.end_form()}