diff options
| author | Rob Hudson | 2011-03-16 20:59:08 -0700 |
|---|---|---|
| committer | Rob Hudson | 2011-03-16 20:59:08 -0700 |
| commit | 0b2fcf045e9434c6efbbddae07d8b79b779483a5 (patch) | |
| tree | 466ecd077177b828b569863a542859841ea771b5 | |
| parent | 24cb6fa4a7e4e3d5f22669e9cbf7d892ca283093 (diff) | |
| download | django-debug-toolbar-0b2fcf045e9434c6efbbddae07d8b79b779483a5.tar.bz2 | |
Made views for AJAX sub-panels CSRF exempt.
| -rw-r--r-- | debug_toolbar/views.py | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/debug_toolbar/views.py b/debug_toolbar/views.py index bc6cdb3..4f32366 100644 --- a/debug_toolbar/views.py +++ b/debug_toolbar/views.py @@ -10,6 +10,7 @@ from django.conf import settings from django.db import connection from django.http import HttpResponseBadRequest from django.shortcuts import render_to_response +from django.views.decorators.csrf import csrf_exempt from django.utils import simplejson from django.utils.hashcompat import sha_constructor @@ -26,6 +27,7 @@ def debug_media(request, path): root = os.path.join(parent, 'media', 'debug_toolbar') return django.views.static.serve(request, path, root) +@csrf_exempt def sql_select(request): """ Returns the output of the SQL SELECT statement. @@ -58,6 +60,7 @@ def sql_select(request): return render_to_response('debug_toolbar/panels/sql_select.html', context) raise InvalidSQLError("Only 'select' queries are allowed.") +@csrf_exempt def sql_explain(request): """ Returns the output of the SQL EXPLAIN on the given query. @@ -98,6 +101,7 @@ def sql_explain(request): return render_to_response('debug_toolbar/panels/sql_explain.html', context) raise InvalidSQLError("Only 'select' queries are allowed.") +@csrf_exempt def sql_profile(request): """ Returns the output of running the SQL and getting the profiling statistics. @@ -141,6 +145,7 @@ def sql_profile(request): return render_to_response('debug_toolbar/panels/sql_profile.html', context) raise InvalidSQLError("Only 'select' queries are allowed.") +@csrf_exempt def template_source(request): """ Return the source of a template, syntax-highlighted by Pygments if |