Commit baab6cab authored by Claude Paroz's avatar Claude Paroz

Skipped CSRF check on the pull_code view

parent 89e7c679
Pipeline #13257 passed with stage
in 4 minutes and 27 seconds
......@@ -10,6 +10,7 @@ from django.template.loader import get_template, TemplateDoesNotExist
from django.urls import reverse
from django.utils.http import is_safe_url
from django.utils.translation import ugettext as _
from django.views.decorators.csrf import csrf_exempt
from people.models import Person, obfuscate_email
from teams.models import Role
......@@ -120,6 +121,8 @@ def help(request, topic, modal):
})
# CSRF skipped, verification using a secret token.
@csrf_exempt
def pull_code(request):
"""GitLab Webhok endpoint to update code after a repository push."""
verified = (
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment