def edit(request, message_id=None): if message_id: message = get_object_or_404(Message, pk=message_id) if message.expediteur != request.user.get_profile(): return HttpResponseForbidden() else: return HttpResponseForbidden() if request.POST: form = MessageForm(request.POST, instance=message) if form.is_valid(): message = form.save() message.objet=sanitizeHtml(message.objet) message.contenu=sanitizeHtml(request.POST['contenu']) message.save() # If the save was successful, redirect to another page redirect_url = message.get_absolute_url()#reverse(article_save_success) return HttpResponseRedirect(redirect_url) else: form = MessageForm(instance=message) return render_to_response("messages/nouveau.html", { 'form': form, }, context_instance=RequestContext(request))