Merge pull request #143 from benchling/master

Fix CsrfProtect exempt for blueprints
pallets-eco · Aug 20, 2014 · c3717f3 · c3717f3
2 parents 57f0823 + bca563f
commit c3717f3
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/flask_wtf/csrf.py b/flask_wtf/csrf.py
@@ -154,7 +154,7 @@ def _csrf_protect():
             if request.method in ('GET', 'HEAD', 'OPTIONS', 'TRACE'):
                 return
 
-            if self._exempt_views:
+            if self._exempt_views or self._exempt_blueprints:
                 if not request.endpoint:
                     return
 
@@ -165,7 +165,7 @@ def _csrf_protect():
                 dest = '%s.%s' % (view.__module__, view.__name__)
                 if dest in self._exempt_views:
                     return
-                if view.__module__ in self._exempt_blueprints:
+                if request.blueprint in self._exempt_blueprints:
                     return
 
             csrf_token = None
@@ -211,7 +211,7 @@ def some_view():
                 return
         """
         if isinstance(view, Blueprint):
-            self._exempt_blueprints.add(view.import_name)
+            self._exempt_blueprints.add(view.name)
             return view
         if isinstance(view, string_types):
             view_location = view