Enable the CSRF check for the login page

2018-06-01 21:54:43 +02:00
parent 8af33d866d
commit 2befde27d5
3 changed files with 5 additions and 2 deletions
--- a/activitypub.py
+++ b/activitypub.py
@@ -293,6 +293,8 @@ class BaseActivity(object):
    def _should_purge_cache(self) -> bool:
        raise NotImplementedError

+    # FIXME(tsileo): _pre_process_from_inbox, _pre_post_to_outbox, allow to prevent saving, check for undo, delete, update both inbox and outbox
+
    def process_from_inbox(self) -> None:
        logger.debug(f'calling main process from inbox hook for {self}')
        self.verify()
@@ -719,7 +721,6 @@ class Update(BaseActivity):
        # TODO(tsileo): implements _should_purge_cache if it's a reply of a published activity (i.e. in the outbox)

    def _post_to_outbox(self, obj_id: str, activity: ObjectType, recipients: List[str]) -> None:
-        print('UPDATE')
        obj = self._data['object']

        update_prefix = 'activity.object.'