#23866: Broken link on 403 forbidden "CSRF token missing or incorrect." page
---------------------------------+------------------------------------
Reporter: nikolas | Owner: nobody
Type: Bug | Status: new
Component: Documentation | Version: 1.7
Severity: Release blocker | Resolution:
Keywords: csrf | Triage Stage: Accepted
Has patch: 0 | Needs documentation: 0
Needs tests: 0 | Patch needs improvement: 0
Easy pickings: 1 | UI/UX: 0
---------------------------------+------------------------------------
Changes (by bmispelon):
* severity: Normal => Release blocker
* needs_better_patch: => 0
* needs_tests: => 0
* needs_docs: => 0
* type: Uncategorized => Bug
* stage: Unreviewed => Accepted
Comment:
Hi,
The offending line can be found here:
https://github.com/django/django/blob/master/django/views/csrf.py#L69
We should also make this link https instead of just http and I'm also
wondering if the link should point to the version of Django being used
instead of the `dev` version (not sure how feasible that is though).
I'm going to bump the severity as well since we should backport that fix.
Thanks.
--
Ticket URL: <https://code.djangoproject.com/ticket/23866#comment:1>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-updates/065.2d3297c1bdcbcff84eee69f73a790fe7%40djangoproject.com.
For more options, visit https://groups.google.com/d/optout.
