fix csrf

diff --git a/diggersdigest/templates/index.html b/diggersdigest/templates/index.html
index 7dc08267710b965741d894542cd7d4228fd5a36f..0934d0a94f41688d8cd6f16474c6ae1f44a2a964 100644 (file)
--- a/diggersdigest/templates/index.html
+++ b/diggersdigest/templates/index.html
@@ -1,5 +1,6 @@
 {% extends "base.html" %}
 {% load i18n %}
+{% load blog_tags records_tags keyword_tags i18n mezzanine_tags %}
 
 {% block meta_title %}{% trans "Home" %}{% endblock %}
 {% comment %}
@@ -11,7 +12,6 @@
 {% endblock %}
 
 {% block main %}
-{% load blog_tags records_tags keyword_tags i18n mezzanine_tags %}
 
 <div class="col-xs-6 col-md-6"><!-- Showcase-->
 {% shop_recent_products limit=2 category="Showcase" as recent_products %}

diff --git a/diggersdigest/templates/shop/product.html b/diggersdigest/templates/shop/product.html
index 6e5352968fdbe665137374cec57d05e5c903bbe8..e49718b05577db15f292406496fafe43e1e40638 100644 (file)
--- a/diggersdigest/templates/shop/product.html
+++ b/diggersdigest/templates/shop/product.html
@@ -154,8 +154,10 @@ $(function () {
 
 {% errors_for add_product_form %}
 
-<form method="post" id="add-cart" class="shop-form">
-    <!-- {% fields_for add_product_form %} -->
+<form method="post" id="add-cart" class="shop-form">{% csrf_token %}
+    <div style="display: none;">
+    {% fields_for add_product_form %}
+    </div>
     <div class="form-actions">
         <input type="submit" class="btn btn-primary btn-lg pull-right" name="add_cart" value="{% trans "Add to cart" %}">
         {% if settings.SHOP_USE_WISHLIST %}