From 4660ce5a6930e07899ed083801845ee4c44c09df Mon Sep 17 00:00:00 2001 From: CHI Cheng Date: Wed, 2 May 2018 23:20:04 +1000 Subject: Fixed #29375 -- Removed empty action attribute on HTML forms. --- docs/ref/class-based-views/generic-editing.txt | 8 ++++---- docs/ref/csrf.txt | 4 ++-- 2 files changed, 6 insertions(+), 6 deletions(-) (limited to 'docs/ref') diff --git a/docs/ref/class-based-views/generic-editing.txt b/docs/ref/class-based-views/generic-editing.txt index 8c1fe0f758..969a033a31 100644 --- a/docs/ref/class-based-views/generic-editing.txt +++ b/docs/ref/class-based-views/generic-editing.txt @@ -74,7 +74,7 @@ editing content: .. code-block:: html+django -
{% csrf_token %} + {% csrf_token %} {{ form.as_p }}
@@ -130,7 +130,7 @@ editing content: .. code-block:: html+django -
{% csrf_token %} + {% csrf_token %} {{ form.as_p }}
@@ -187,7 +187,7 @@ editing content: .. code-block:: html+django -
{% csrf_token %} + {% csrf_token %} {{ form.as_p }}
@@ -238,7 +238,7 @@ editing content: .. code-block:: html+django -
{% csrf_token %} + {% csrf_token %}

Are you sure you want to delete "{{ object }}"?

diff --git a/docs/ref/csrf.txt b/docs/ref/csrf.txt index fdb373b002..2664a6270f 100644 --- a/docs/ref/csrf.txt +++ b/docs/ref/csrf.txt @@ -41,7 +41,7 @@ To take advantage of CSRF protection in your views, follow these steps: .. code-block:: html+django -
{% csrf_token %} + {% csrf_token %} This should not be done for POST forms that target external URLs, since that would cause the CSRF token to be leaked, leading to a vulnerability. @@ -179,7 +179,7 @@ to ``{% csrf_token %}`` in the Django template language. For example: .. code-block:: html+jinja - {{ csrf_input }} + {{ csrf_input }} The decorator method -------------------- -- cgit v1.3