id summary reporter owner description type status component version severity resolution keywords cc stage has_patch needs_docs needs_tests needs_better_patch easy ui_ux 6925 CSRF html output is not valid html (it is xhtml) Jeffrey Gelens Jeffrey Gelens "The csrfmiddlewaretoken output input field is XHTML and invalidates HTML 4.01 pages when used. To enable HTML output I think the following setting will be ok: CSRF_MIDDLEWARE_OUTPUT_HTML = True With default set to False. The current output looks like, {{{ }}} So the new output will look like this (with html output enabled): {{{ }}} " Bug closed CSRF dev Normal wontfix Someday/Maybe 1 0 0 0 0 0