#15198: AuthenticationForm.clean call does not have request set
--------------------------------------+------------------------------------
Reporter: Ciantic | Owner: nobody
Type: Cleanup/optimization | Status: new
Component: contrib.auth | Version: master
Severity: Normal | Resolution:
Keywords: | Triage Stage: Accepted
Has patch: 1 | Needs documentation: 0
Needs tests: 0 | Patch needs improvement: 1
Easy pickings: 1 | UI/UX: 0
--------------------------------------+------------------------------------
Comment (by claudep):
#19446 was a duplicate (addressing the cookie test issue). About that
cookie test: in any case, when cookies are disabled in the browser, the
`csrf_protect` decorator will short-circuit the login process and return a
403 Forbidden response to the POST request. Therefore I think we could
drop the cookie test altogether.
--
Ticket URL: <https://code.djangoproject.com/ticket/15198#comment:7>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to django-updates@googlegroups.com.
To unsubscribe from this group, send email to
django-updates+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
