Merge pull request #302834 from gador/pgadmin-fix-csrf
pgadmin4: fix CSRF issue
This commit is contained in:
commit
77991a85e5
|
@ -26,7 +26,18 @@ let
|
||||||
|
|
||||||
# keep the scope, as it is used throughout the derivation and tests
|
# keep the scope, as it is used throughout the derivation and tests
|
||||||
# this also makes potential future overrides easier
|
# this also makes potential future overrides easier
|
||||||
pythonPackages = python3.pkgs.overrideScope (final: prev: rec { });
|
pythonPackages = python3.pkgs.overrideScope (final: prev: rec {
|
||||||
|
# Flask 5.4.3 introduces an CSRF error which makes it impossible to login
|
||||||
|
# So either we downgrade flask here or use "WTF_CSRF_ENABLED = false" in the
|
||||||
|
# module config to disable CSRF.
|
||||||
|
flask-security-too = prev.flask-security-too.overridePythonAttrs (oldAttrs: rec {
|
||||||
|
version = "5.4.1";
|
||||||
|
src = oldAttrs.src.override {
|
||||||
|
inherit version;
|
||||||
|
hash = "sha256-Ay7+gk+zuUlXtw0LDdsnvSa22z+yE6VR1guu9QmiFvw=";
|
||||||
|
};
|
||||||
|
});
|
||||||
|
});
|
||||||
|
|
||||||
offlineCache = fetchYarnDeps {
|
offlineCache = fetchYarnDeps {
|
||||||
yarnLock = ./yarn.lock;
|
yarnLock = ./yarn.lock;
|
||||||
|
|
Loading…
Reference in New Issue
Block a user