36 lines
1.1 KiB
Python
36 lines
1.1 KiB
Python
# View for semi-static templatized content.
|
|
#
|
|
# List of valid templates is explicitly managed for (short-term)
|
|
# security reasons.
|
|
|
|
from djangomako.shortcuts import render_to_response, render_to_string
|
|
from django.shortcuts import redirect
|
|
from django.core.context_processors import csrf
|
|
|
|
#valid_templates=['index.html', 'staff.html', 'info.html', 'credits.html']
|
|
valid_templates=['mitx_global.html',
|
|
'index.html',
|
|
'tos.html',
|
|
'privacy.html',
|
|
'honor.html',
|
|
'copyright.html']
|
|
|
|
def index(request, template):
|
|
csrf_token = csrf(request)['csrf_token']
|
|
if template in valid_templates:
|
|
return render_to_response(template, {'error' : '',
|
|
'csrf': csrf_token })
|
|
else:
|
|
return redirect('/')
|
|
|
|
valid_auth_templates=['help.html']
|
|
|
|
def auth_index(request, template):
|
|
if not request.user.is_authenticated():
|
|
return redirect('/')
|
|
|
|
if template in valid_auth_templates:
|
|
return render_to_response(template,{})
|
|
else:
|
|
return redirect('/')
|