Missing comma in admin.html causes csrf error #4472

danielkeller · 2016-09-08T06:51:26Z

Checklist

I have verified that that issue exists against the master branch of Django REST framework.
I have searched for similar issues in both open and closed tickets and cannot find a duplicate.
This is not a usage question. (Those should be directed to the discussion group instead.)
This cannot be dealt with as a third party library. (We prefer new functionality to be in the form of third party libraries where possible.)
I have reduced the issue to the simplest possible case.
I have included a failing test as a pull request. (If you are unable to do so we can still accept the issue.)

Load the admin

No javascript errors happen

Due to a missing comma here a javascript error occurs, causing requests made with the admin to fail with a CSRF error.

The text was updated successfully, but these errors were encountered:

xordoquy · 2016-09-08T07:41:56Z

Is this related to #4471 ?
How can we reproduce the admin issue ? As you might see with #4471, it seems to be working.

tomchristie · 2016-09-08T10:23:49Z

Dammit, yup - needs resolving.
Same as #4435 but for the admin renderer.
Pull requests welcome.

xordoquy added the Needs information label Sep 8, 2016

tomchristie added this to the 3.4.7 Release milestone Sep 8, 2016

tomchristie added Bug and removed Needs information labels Sep 8, 2016

jpadilla mentioned this issue Sep 8, 2016

Add missing comma #4473

Merged

tomchristie closed this as completed in #4473 Sep 8, 2016

pyup-bot mentioned this issue Oct 22, 2016

Pin djangorestframework to latest version 3.5.1 wooyek/django-website-pro#16

Merged