diff options
| author | Luke Plant <L.Plant.98@cantab.net> | 2010-01-04 21:55:52 +0000 |
|---|---|---|
| committer | Luke Plant <L.Plant.98@cantab.net> | 2010-01-04 21:55:52 +0000 |
| commit | 48edb177edf04854999355dfdfe23fc6ee312d7b (patch) | |
| tree | 1daf23619b548cc72c60ead6c4a7fc6af67fe900 /docs/ref | |
| parent | 77e27e7de73333b8610c5e8967a3681636f844b0 (diff) | |
Fixed #12053 - form examples don't validate according to w3c
Thanks to skyl for the report.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@12086 bcc190cf-cafb-0310-a4f2-bffc1f526a37
Diffstat (limited to 'docs/ref')
| -rw-r--r-- | docs/ref/contrib/comments/example.txt | 2 | ||||
| -rw-r--r-- | docs/ref/contrib/comments/index.txt | 4 | ||||
| -rw-r--r-- | docs/ref/contrib/csrf.txt | 2 |
3 files changed, 4 insertions, 4 deletions
diff --git a/docs/ref/contrib/comments/example.txt b/docs/ref/contrib/comments/example.txt index e9445353ca..ec600f7219 100644 --- a/docs/ref/contrib/comments/example.txt +++ b/docs/ref/contrib/comments/example.txt @@ -103,7 +103,7 @@ But let's look at a simple example:: <!-- A context variable called form is created with the necessary hidden fields, timestamps and security hashes --> <table> - <form action="{% comment_form_target %}" method="POST"> + <form action="{% comment_form_target %}" method="post"> {{ form }} <tr> <td></td> diff --git a/docs/ref/contrib/comments/index.txt b/docs/ref/contrib/comments/index.txt index 9f53f06299..319dadff08 100644 --- a/docs/ref/contrib/comments/index.txt +++ b/docs/ref/contrib/comments/index.txt @@ -218,7 +218,7 @@ you can use in the template:: A complete form might look like:: {% get_comment_form for event as form %} - <form action="{% comment_form_target %}" method="POST"> + <form action="{% comment_form_target %}" method="post"> {{ form }} <tr> <td></td> @@ -239,7 +239,7 @@ You may have noticed that the above example uses another template tag -- form. This will always return the correct URL that comments should be posted to; you'll always want to use it like above:: - <form action="{% comment_form_target %}" method="POST"> + <form action="{% comment_form_target %}" method="post"> Redirecting after the comment post ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ diff --git a/docs/ref/contrib/csrf.txt b/docs/ref/contrib/csrf.txt index ea76fc3739..e635a0380b 100644 --- a/docs/ref/contrib/csrf.txt +++ b/docs/ref/contrib/csrf.txt @@ -49,7 +49,7 @@ To enable CSRF protection for your views, follow these steps: 2. In any template that uses a POST form, use the :ttag:`csrf_token` tag inside the ``<form>`` element if the form is for an internal URL, e.g.:: - <form action="" method="POST">{% csrf_token %} + <form action="" method="post">{% csrf_token %} This should not be done for POST forms that target external URLs, since that would cause the CSRF token to be leaked, leading to a vulnerability. |
