settings.PUBLIC_SITE, login required if public for logbook entry, CRCF middleware

2024-11-22 07:11:52 +00:00 · 2011-05-02 02:12:26 +01:00 · 2011-05-02 02:12:26 +01:00 · 671e946c6d
commit 671e946c6d
parent 3928609c29
6 changed files with 12 additions and 3 deletions
--- a/localsettingsserver.py
+++ b/localsettingsserver.py
@ -16,6 +16,8 @@ SURVEY_SCANS = '/home/expo/expoimages/'
 FILES = '/home/expo/expoimages'
 EXPOWEB_URL = 'http://expo.survex.com/'

+PUBLIC_SITE = True
+
 SURVEYS_URL = 'http://troggle.cavingexpedition.com/survey_scans/'

 SVX_URL = 'http://framos.lawoftheland.co.uk/troggle/survex/'
--- a/localsettingsubuntu.py
+++ b/localsettingsubuntu.py
@ -13,6 +13,8 @@ SURVEYS = '/home/goatchurch/tunnel/cucc/surveys'

 EXPOWEB_URL = 'http://expo.survex.com/'

+PUBLIC_SITE = False
+
 CAVERN = 'cavern'
 EXPOWEB = '/home/goatchurch/expoweb/'
 SURVEYS_URL = ''
--- a/localsettingswindows.py
+++ b/localsettingswindows.py
@ -18,6 +18,7 @@ LOGFILE = EXPOWEB+'troggle\\parsing_log.txt'
 PHOTOS = 'C:\\Expo\\expoweb\\photos'

 URL_ROOT = 'http://127.0.0.1:8000'
+PUBLIC_SITE = False

 TINY_MCE_MEDIA_ROOT = '/usr/share/tinymce/www/' 
 TINY_MCE_MEDIA_URL = URL_ROOT + 'tinymce_media/'
--- a/settings.py
+++ b/settings.py
@ -63,6 +63,7 @@ MIDDLEWARE_CLASSES = (
    'django.contrib.sessions.middleware.SessionMiddleware',
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    'django.contrib.redirects.middleware.RedirectFallbackMiddleware',
+    'django.middleware.csrf.CsrfViewMiddleware',
    'troggle.middleware.SmartAppendSlashMiddleware'
 )

--- a/templates/logbookentry.html
+++ b/templates/logbookentry.html
@ -5,7 +5,9 @@
 {% block editLink %}<a href={{logbookentry.get_admin_url}}>Edit logbook entry {{logbookentry|wiki_to_html_short}}</a>{% endblock %}
 {% block content %}

-<h2>{{logbookentry.title|safe}}</h2>
+{% block related %}{% endblock %}
+{% block nav %}{% endblock %}
+<h2>{{logbookentry.title}}</h2>

 <div id="related">
 <p><a href="{{ logbookentry.expedition.get_absolute_url }}">{{logbookentry.expedition.name}}</a></p>
@ -69,6 +71,7 @@
 </div>
 </div>

-{% if logbookentry.filename %}<a href="{% url editlogbookentry year=logbookentry.year pdate=logbookentry.date pslug=logbookentry.slug %}">Edit</a> <a href="{% url deletelogbookentry year=logbookentry.year date=logbookentry.date slug=logbookentry.slug %}">Delete</a>{%endif%}
+{% if logbookentry.filename %}<a href="{% url editLogBookEntry expeditionyear=logbookentry.expedition.year pdate=logbookentry.date pslug=logbookentry.slug %}">Edit</a> <a href="{% url deleteLogBookEntry expeditionyear=logbookentry.expedition.year date=logbookentry.date slug=logbookentry.slug %}">Delete</a>{%endif%}
+

 {% endblock %}
--- a/templates/registration/login.html
+++ b/templates/registration/login.html
@ -6,7 +6,7 @@
 <p>Your username and password didn't match. Please try again.</p>
 {% endif %}

-<form method="post" action=".">
+<form method="post" action=".">{% csrf_token %}
 <table>
 <tr><td>{{ form.username.label_tag }}</td><td>{{ form.username }}</td></tr>
 <tr><td>{{ form.password.label_tag }}</td><td>{{ form.password }}</td></tr>