Explicit CSRF failure message. Fixes #60.

author: Tom Christie 2012-10-15 14:03:36 +0100
committer: Tom Christie 2012-10-15 14:03:36 +0100
commit: 3c8f01b985396c9bfe802f0d1e25bbb59ea2a1a9 (patch)
tree: 30535079a0f4f6900d318e8c46090bd135587b14 /rest_framework/renderers.py
parent: 9c1fba3483b7e81da0744464dcf23a5f12711de2 (diff)
download: django-rest-framework-3c8f01b985396c9bfe802f0d1e25bbb59ea2a1a9.tar.bz2
1 files changed, 5 insertions, 2 deletions
diff --git a/rest_framework/renderers.py b/rest_framework/renderers.py
index 2a3b0b6c..94d253c9 100644
--- a/rest_framework/renderers.py
+++ b/rest_framework/renderers.py
@@ -235,8 +235,11 @@ class BrowsableAPIRenderer(BaseRenderer):
             return  # Cannot use form overloading
 
         request = clone_request(request, method)
-        if not view.has_permission(request):
-            return  # Don't have permission
+        try:
+            if not view.has_permission(request):
+                return  # Don't have permission
+        except:
+            return  # Don't have permission and exception explicitly raise
 
         if method == 'DELETE' or method == 'OPTIONS':
             return True  # Don't actually need to return a form
author	Tom Christie	2012-10-15 14:03:36 +0100
committer	Tom Christie	2012-10-15 14:03:36 +0100
commit	3c8f01b985396c9bfe802f0d1e25bbb59ea2a1a9 (patch)
tree	30535079a0f4f6900d318e8c46090bd135587b14 /rest_framework/renderers.py
parent	9c1fba3483b7e81da0744464dcf23a5f12711de2 (diff)
download	django-rest-framework-3c8f01b985396c9bfe802f0d1e25bbb59ea2a1a9.tar.bz2