Opened 8 years ago

Closed 8 years ago

Last modified 5 years ago

#10306 closed (fixed)

login.html example FORM tag is wrong in http://docs.djangoproject.com/en/dev/topics/auth/

Reported by: jkafader Owned by: Kevin Kubasik
Component: Documentation Version: 1.0
Severity: Keywords: kkmegapatch
Cc: Triage Stage: Accepted
Has patch: yes Needs documentation: no
Needs tests: no Patch needs improvement: no
Easy pickings: UI/UX:

Description

Hi I just thought I'd pass this along:

the ACTION parameter on the FORM tag for your sample login.html template is almost certainly wrong. It should not be '.' -- I'm not an expert on FORM ACTION but I think it should instead be , which at least worked for me.

This cost me, actually, about an hour of development time, thinking there was something drastically wrong with the way I was passing or handling the ?next= parameter in my login form. You see, an action of '.' cuts off the GET CGI string, making your form unable to redirect properly (django.contrib.auth.views.login gets the 'redirect_to' variable from the GET string, not from POST), but still, confusingly, logging in the user correctly.

This really took up a lot of time to figure out, I guess I should have gone with my original instinct of action="" with my login.html rather than slavishly copying the one in the docs. But I just thought I'd let you know about an unnecessary gotcha.

--james

Attachments (2)

auth.diff (500 bytes) - added by Kyle Fuller 8 years ago.
Diff for docs/topics/auth.txt
auth.2.diff (500 bytes) - added by Kyle Fuller 8 years ago.
Diff for docs/topics/auth.txt

Download all attachments as: .zip

Change History (12)

comment:1 Changed 8 years ago by jkafader

sorry the above should read "It should not be '.' -- I'm not an expert on FORM ACTION, but I think it should instead be "" (empty string), which at least worked for me." I think the "" (empty string) double single quotes got stuck in the wiki formatting filter.

---james

comment:2 Changed 8 years ago by (none)

milestone: post-1.0

Milestone post-1.0 deleted

comment:3 Changed 8 years ago by Jacob

milestone: 1.1
Triage Stage: UnreviewedAccepted

comment:4 Changed 8 years ago by Kyle Fuller

Has patch: set
Resolution: fixed
Status: newclosed

Simply use:

    <form method="post" action="{% url django.contrib.auth.views.login %}">

Changed 8 years ago by Kyle Fuller

Attachment: auth.diff added

Diff for docs/topics/auth.txt

Changed 8 years ago by Kyle Fuller

Attachment: auth.2.diff added

Diff for docs/topics/auth.txt

comment:5 Changed 8 years ago by Kyle Fuller

Triage Stage: AcceptedReady for checkin

comment:6 Changed 8 years ago by Jacob

Resolution: fixed
Status: closedreopened

Please don't mark tickets as fixed until the change actually gets checked into Django.

comment:7 Changed 8 years ago by Jacob

Triage Stage: Ready for checkinAccepted

comment:8 Changed 8 years ago by Kevin Kubasik

Keywords: kkmegapatch added
Owner: changed from nobody to Kevin Kubasik
Status: reopenednew

comment:9 Changed 8 years ago by James Bennett

Resolution: fixed
Status: newclosed

(In [10269]) Fixed #10306: Corrected form action in auth login example.

comment:10 Changed 5 years ago by Jacob

milestone: 1.1

Milestone 1.1 deleted

Note: See TracTickets for help on using tickets.
Back to Top