mirror of
https://github.com/seanmorley15/AdventureLog.git
synced 2025-08-04 04:35:19 +02:00
Sean Morley
GitHub
commit
049c229799
2 changed files with 10 additions and 1 deletions
|
|
@ -29,4 +29,12 @@ class XSessionTokenMiddleware(MiddlewareMixin):
|
||||||
class DisableCSRFForSessionTokenMiddleware(MiddlewareMixin):
|
class DisableCSRFForSessionTokenMiddleware(MiddlewareMixin):
|
||||||
def process_request(self, request):
|
def process_request(self, request):
|
||||||
if 'X-Session-Token' in request.headers:
|
if 'X-Session-Token' in request.headers:
|
||||||
setattr(request, '_dont_enforce_csrf_checks', True)
|
setattr(request, '_dont_enforce_csrf_checks', True)
|
||||||
|
|
||||||
|
class DisableCSRFForMobileLoginSignup(MiddlewareMixin):
|
||||||
|
def process_request(self, request):
|
||||||
|
is_mobile = request.headers.get('X-Is-Mobile', '').lower() == 'true'
|
||||||
|
is_login_or_signup = request.path in ['/auth/browser/v1/auth/login', '/auth/browser/v1/auth/signup']
|
||||||
|
if is_mobile and is_login_or_signup:
|
||||||
|
setattr(request, '_dont_enforce_csrf_checks', True)
|
||||||
|
|
||||||
|
|
@ -71,6 +71,7 @@ MIDDLEWARE = (
|
||||||
'whitenoise.middleware.WhiteNoiseMiddleware',
|
'whitenoise.middleware.WhiteNoiseMiddleware',
|
||||||
'adventures.middleware.XSessionTokenMiddleware',
|
'adventures.middleware.XSessionTokenMiddleware',
|
||||||
'adventures.middleware.DisableCSRFForSessionTokenMiddleware',
|
'adventures.middleware.DisableCSRFForSessionTokenMiddleware',
|
||||||
|
'adventures.middleware.DisableCSRFForMobileLoginSignup',
|
||||||
'corsheaders.middleware.CorsMiddleware',
|
'corsheaders.middleware.CorsMiddleware',
|
||||||
'django.contrib.sessions.middleware.SessionMiddleware',
|
'django.contrib.sessions.middleware.SessionMiddleware',
|
||||||
'django.middleware.common.CommonMiddleware',
|
'django.middleware.common.CommonMiddleware',
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue