pallets-eco · davidism · Oct 9, 2016 · Jan 28, 2016
diff --git a/flask_wtf/csrf.py b/flask_wtf/csrf.py
@@ -165,14 +165,14 @@ def _csrf_protect():
             if request.method not in app.config['WTF_CSRF_METHODS']:
                 return
 
-            if self._exempt_views or self._exempt_blueprints:
-                if not request.endpoint:
-                    return
+            if not request.endpoint:
+                return
 
-                view = app.view_functions.get(request.endpoint)
-                if not view:
-                    return
+            view = app.view_functions.get(request.endpoint)
+            if not view:
+                return
 
+            if self._exempt_views or self._exempt_blueprints:
                 dest = '%s.%s' % (view.__module__, view.__name__)
                 if dest in self._exempt_views:
                     return