klmp200/Sith
1
0
Fork 0
mirror of https://github.com/ae-utbm/sith.git synced 2026-04-25 16:16:01 +00:00
Code Issues Packages Projects Releases Wiki Activity

Security fix for image rotations. Add proper permissions, tests and use a form to avoid cross domain forgery attacks

Browse Source
This commit is contained in:
Antoine Bartuccio
2026-04-25 01:06:23 +02:00
parent 0360d53cd6
commit 8a2eee113a
8 changed files with 263 additions and 99 deletions
Download Patch File Download Diff File Expand all files Collapse all files
sas/forms.py
+7
View File
@@ -90,3 +90,10 @@ class PictureModerationRequestForm(forms.ModelForm):
self.instance.author = self.user
self.instance.picture = self.picture
return super().save(commit)
class PictureRotationForm(forms.Form):
picture = forms.ModelChoiceField(Picture.objects.all(), required=True)
direction = forms.ChoiceField(
choices=[("LEFT", _("Left")), ("RIGHT", _("Right"))], required=True
)