Skip to content
Browse files

Only accept POST requests

  • Loading branch information...
1 parent 201a21f commit e1e1447b925562204272c6cb846a21195ad81c15 @paltman paltman committed
Showing with 3 additions and 1 deletion.
  1. +3 −1 reminders/views.py
View
4 reminders/views.py
@@ -1,8 +1,10 @@
from django.conf import settings
-from django.http import HttpResponse, Http404
+from django.http import HttpResponse, Http404, HttpResponseNotAllowed
def dismiss(request, label):
+ if request.method != "POST":
+ return HttpResponseNotAllowed(["POST"])
if label not in settings.REMINDERS:
return Http404()
if not settings.REMINDERS.get(label).get("dismissable", True):

0 comments on commit e1e1447

Please sign in to comment.
Something went wrong with that request. Please try again.