settings: Enable CSRF protection middleware.

[matthijs/projects/dorestad-bookings.git] / settings.py

diff --git a/settings.py b/settings.py
index fbe3df40e8d80d38935fdcb3fa2891c0f9c990e1..c6bd83d6a5771d0b205f27bd1cdade4fdd01d029 100644 (file)
--- a/settings.py
+++ b/settings.py
@@ -63,6 +63,7 @@ MIDDLEWARE_CLASSES = (
     'django.middleware.common.CommonMiddleware',
     'django.contrib.sessions.middleware.SessionMiddleware',
     'django.contrib.auth.middleware.AuthenticationMiddleware',
+    'django.middleware.csrf.CsrfViewMiddleware',
 )
 
 ROOT_URLCONF = 'dorestad-bookings.urls'
@@ -82,6 +83,14 @@ INSTALLED_APPS = (
     'tickets',
 )
 
+TEMPLATE_CONTEXT_PROCESSORS = (
+    "django.core.context_processors.auth",
+    "django.core.context_processors.debug",
+    "django.core.context_processors.i18n",
+    "django.core.context_processors.media",
+    "django.core.context_processors.request",
+)
+
 # Allow authentication against the phpb user accounts
 
 AUTHENTICATION_BACKENDS = (