Correct method of CRSF exemption for webhook reciever

2026-01-17 21:42:14 +00:00 · 2023-06-26 22:27:20 +01:00
parent 2c808d0adf
commit 039f9f68d3
1 changed files with 5 additions and 2 deletions
--- a/RIGS/views/rigboard.py
+++ b/RIGS/views/rigboard.py
@@ -398,11 +398,14 @@ class CreateForumThread(generic.base.RedirectView):
            'body': '<span class="hidden" id="event-id">{}</span>https://rigs.nottinghamtec.co.uk/event/{}'.format(event.pk, event.pk),
            'category': 'rig-info'
        }
-        return 'https://forum.nottinghamtec.co.uk/new-topic' + "?" + urllib.parse.urlencode(params)
+        return f'https://forum.nottinghamtec.co.uk/new-topic?{}'.format(urllib.parse.urlencode(params))


 class RecieveForumWebhook(generic.View):
-    @csrf_exempt
+    @method_decorator(csrf_exempt)
+  def dispatch(self, request, *args, **kwargs):
+    return super().dispatch(request, *args, **kwargs)
+
    def post(self, request, *args, **kwargs):
        if request.POST.get('secret') == env('FORUM_WEBHOOK_SECRET'):
            event_id = BeautifulSoup(request.POST.get('body'), "html.parser")