Add correct CSRF token to permissions page

uclapi · Aug 31, 2023 · a9cebaf · a9cebaf
1 parent 08f13d5
commit a9cebaf
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/backend/uclapi/oauth/templates/permissions.html b/backend/uclapi/oauth/templates/permissions.html
@@ -91,14 +91,14 @@ <h2 class="card-title">
         <button type="submit" class="authorise-button">
           Authorise {{initial_data.app_name}}
         </button>
+        {% csrf_token %}
         <input type="hidden" name="signed_app_data" value='{{initial_data.signed_data}}' />
-        <input type="hidden" name="csrfmiddlewaretoken" value="{{request.COOKIES.csrftoken}}" />
       </form>
 
       <form method="post" action="/oauth/user/deny">
-        <button>Deny</button>
+        <button type="submit">Deny</button>
+        {% csrf_token %}
         <input type="hidden" name="signed_app_data" value='{{initial_data.signed_data}}' />
-        <input type="hidden" name="csrfmiddlewaretoken" value="{{request.COOKIES.csrftoken}}" />
       </form>
     </div>