commit 5c92ca900779a69ef7cd2df4ec16f4bc71d45565
author Scott Baker <smbaker@gmail.com> Tue Oct 28 15:57:40 2014 -0700
committer Scott Baker <smbaker@gmail.com> Tue Oct 28 15:57:40 2014 -0700
tree bb1169d83a4f890e09b3a3abc90cba82f9d30003
parent 7f80902bf3ef992357ac6c2992ff9c920c0fc43f

CSRF token support in xoslib

planetstack/core/xoslib/static/js/xoslib/xos-backbone.js

diff --git a/planetstack/core/xoslib/static/js/xoslib/xos-backbone.js b/planetstack/core/xoslib/static/js/xoslib/xos-backbone.js
index d2d8f17..af79852 100644
--- a/planetstack/core/xoslib/static/js/xoslib/xos-backbone.js
+++ b/planetstack/core/xoslib/static/js/xoslib/xos-backbone.js
@@ -226,4 +226,16 @@
     };
 
     xos = new xoslib();
+
+    (function() {
+      var _sync = Backbone.sync;

+      Backbone.sync = function(method, model, options){

+        options.beforeSend = function(xhr){

+          var token = $('meta[name="csrf-token"]').attr('content');

+          xhr.setRequestHeader('X-CSRFToken', token);

+          console.log(token);

+        };

+        return _sync(method, model, options);

+      };

+    })();
 }

planetstack/templates/admin/base.html

diff --git a/planetstack/templates/admin/base.html b/planetstack/templates/admin/base.html
index dc92ca9..21f7974 100644
--- a/planetstack/templates/admin/base.html
+++ b/planetstack/templates/admin/base.html
@@ -2,6 +2,7 @@
 <html lang="{{ LANGUAGE_CODE|default:"en-us" }}" {% if LANGUAGE_BIDI %}dir="rtl"{% endif %}>
 <head>
   <title>{% block title %}  {%if title %} {{ title }} | {% endif %} {{ 'ADMIN_NAME'|suit_conf }}{% endblock %}</title>
+  <meta name="csrf-token" content="{{csrf_token}}">
   <link rel="stylesheet" type="text/css" href="{% block stylesheet %}{% endblock %}"/>
   <link rel="stylesheet" type="text/css" href="{% static 'suit/bootstrap/css/bootstrap.min.css' %}" media="all"/>
   <link rel="stylesheet" type="text/css" href="{% static 'suit/css/suit.css' %}" media="all">