Mercurial > public > sg101
annotate gpp/templates/comments/comment_form.html @ 507:8631d32e6b16
Some users are still having problems with the pop-up login. I think they are actually getting 403s because of the CSRF protection. So I have modified the base template to always have a javascript variable called csrf_token available when they aren't logged in. The ajax_login.js script was then modified to send this value with the ajax post. Fingers crossed.
| author | Brian Neal <bgneal@gmail.com> |
|---|---|
| date | Sun, 04 Dec 2011 03:05:21 +0000 |
| parents | daa2916f5b34 |
| children |
| rev | line source |
|---|---|
| bgneal@310 | 1 {% load url from future %} |
| bgneal@134 | 2 {% load core_tags %} |
| gremmie@1 | 3 {% if user.is_authenticated %} |
| bgneal@310 | 4 <form action="{% url 'comments-post' %}" method="post" id="comment-form">{% csrf_token %} |
| gremmie@1 | 5 {{ form.as_p }} |
| bgneal@134 | 6 {% comment_dialogs %} |
| gremmie@1 | 7 <input type="submit" name="post" value="Post Comment" id="comment-form-post"/> |
| gremmie@1 | 8 </form> |
| gremmie@1 | 9 {% else %} |
| gremmie@1 | 10 <p> |
| bgneal@310 | 11 Please <a href="{% url 'accounts-login' %}">login</a> or |
| bgneal@310 | 12 <a href="{% url 'accounts-register' %}">register</a> to leave a comment. |
| gremmie@1 | 13 </p> |
| gremmie@1 | 14 {% endif %} |