Mercurial > public > sg101
log
age | author | description |
---|---|---|
Sun, 04 Dec 2011 03:05:21 +0000 | Brian Neal | Some users are still having problems with the pop-up login. I think they are actually getting 403s because of the CSRF protection. So I have modified the base template to always have a javascript variable called csrf_token available when they aren't logged in. The ajax_login.js script was then modified to send this value with the ajax post. Fingers crossed. |
Sat, 03 Dec 2011 20:46:41 +0000 | Brian Neal | Added the rate_limit_clear management command, to delete IP addresses from the rate limit datastore. |
Sat, 03 Dec 2011 19:13:38 +0000 | Brian Neal | Refactor the logic in the rate limiter decorator. Check to see if the request was ajax, as the ajax view always returns 200. Have to decode the JSON response to see if an error occurred or not. |
Sat, 03 Dec 2011 16:25:15 +0000 | Brian Neal | Made some tweaks to the ajax login javascript. |