From 58cf996d821c319b4b1a4be6fdc06fadafaf5891 Mon Sep 17 00:00:00 2001
From: MaM Web user <mam-web@gimli.ms.mff.cuni.cz>
Date: Tue, 7 Sep 2021 19:00:35 +0200
Subject: [PATCH] =?UTF-8?q?Smaz=C3=A1ny=20anotace=20o=20nebezpe=C4=8Dn?=
 =?UTF-8?q?=C3=BDch=20POST=20parametrech=20z=20autentika=C4=8Dn=C3=ADch=20?=
 =?UTF-8?q?views?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Jednak stejně by oanotované být měly, a jednak nejde takto dekorovat třídy.
---
 seminar/views/views_all.py | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/seminar/views/views_all.py b/seminar/views/views_all.py
index 3837c95e..7751f628 100644
--- a/seminar/views/views_all.py
+++ b/seminar/views/views_all.py
@@ -1363,12 +1363,10 @@ Tento e-mail byl vygenerován automaticky, chceš-li nás kontaktovat, napiš n
 	return render(request, 'seminar/profil/prihlaska.html', {'form': form})
 
 # FIXME: Tohle asi vlastně vůbec nepatří do aplikace 'seminar'
-@sensitive_post_parameters('password')
 class LoginView(auth_views.LoginView):
 	# Jen vezmeme vestavěný a dáme mu vhodný template a přesměrovací URL
 	template_name = 'seminar/profil/login.html'
 
-@sensitive_post_parameters('password')
 class LogoutView(auth_views.LogoutView):
 	# Jen vezmeme vestavěný a dáme mu vhodný template a přesměrovací URL
 	template_name = 'seminar/profil/logout.html'
@@ -1376,7 +1374,6 @@ class LogoutView(auth_views.LogoutView):
 	next_page = reverse_lazy('titulni_strana')
 
 # Nejsem si jistý, který view co dostává, tak zahazuji všechny POSTy
-@sensitive_post_parameters()
 class PasswordResetView(auth_views.PasswordResetView):
 	""" Chci resetovat heslo. """
 	template_name = 'seminar/registrace/reset_hesla.html'
@@ -1385,23 +1382,19 @@ class PasswordResetView(auth_views.PasswordResetView):
 	email_template_name = 'seminar/registrace/password_reset_email.html'
 	subject_template_name = 'seminar/registrace/password_reset_subject.txt'
 
-@sensitive_post_parameters()
 class PasswordResetDoneView(auth_views.PasswordResetDoneView):
 	""" Poslali jsme e-mail (pokud bylo kam)). """
 	template_name = 'seminar/registrace/reset_poslan.html'
 
-@sensitive_post_parameters()
 class PasswordResetConfirmView(auth_views.PasswordResetConfirmView):
 	""" Vymysli si heslo. """
 	template_name = 'seminar/registrace/nove_heslo.html'
 	success_url = reverse_lazy('reset_password_complete')
 
-@sensitive_post_parameters()
 class PasswordResetCompleteView(auth_views.PasswordResetCompleteView):
 	""" Heslo se asi změnilo."""
 	template_name = 'seminar/registrace/nove_nastaveno.html'
 
-@sensitive_post_parameters()
 class PasswordChangeView(auth_views.PasswordChangeView):
 	#template_name = 'seminar/password_change.html'
 	success_url = reverse_lazy('titulni_strana')