From 23dff8b3c6295c5be5eecee2383a86ec3a0ad5c7 Mon Sep 17 00:00:00 2001
From: Leif Johansson <leifj@sunet.se>
Date: Tue, 3 Apr 2012 16:27:15 +0200
Subject: no csrf for saml aq

---
 coip/apps/saml2/views.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/coip/apps/saml2/views.py b/coip/apps/saml2/views.py
index 2fcde4f..ee62061 100644
--- a/coip/apps/saml2/views.py
+++ b/coip/apps/saml2/views.py
@@ -13,6 +13,7 @@ from django.http import HttpResponse, HttpResponseBadRequest
 from saml2.metadata import entity_descriptor
 from saml2.saml import NAME_FORMAT_URI
 from django.conf import settings
+from django.views.decorators.csrf import csrf_exempt
 
 def get_full_path(request,path=None):
     if path == None:
@@ -74,6 +75,7 @@ def metadata(request):
     ed = entity_descriptor(cnf, 0)
     return HttpResponse(content=ed,content_type="text/xml")
 
+@csrf_exempt
 def aq(request):
     if request.method == 'POST':
         aa = server.Server(config=_config(request), log=logging, debug=1, stype="aa")
-- 
cgit v1.1