def parent_redirect(request): """ Forces a _parent redirect to the specified url. """ encoded_url = request.GET.get('next','') unquoted_url = urllib2.unquote(encoded_url) if validate_redirect(unquoted_url): return render(request, 'facebook/redirecter.html', {'destination': unquoted_url }) else: return HttpResponseForbidden('The next= paramater is not an allowed redirect url.')
def internal_redirect(request): """ Forces a GET redirect. Use this if you do a parent redirect to your view if your view is csrf protected. """ encoded_url = request.GET.get('page','') unquoted_url = urllib2.unquote(encoded_url) if validate_redirect(unquoted_url): return render(request, 'facebook/internalredirecter.html', {'destination': urllib2.unquote(unquoted_url) }) else: return HttpResponseForbidden('The next= paramater is not an allowed redirect url.')
def parent_redirect(request): """ Forces a _parent redirect to the specified url. """ encoded_url = request.GET.get('next', '') unquoted_url = urllib2.unquote(encoded_url) if validate_redirect(unquoted_url): return render(request, 'facebook/redirecter.html', {'destination': unquoted_url}) else: return HttpResponseForbidden( 'The next= paramater is not an allowed redirect url.')
def internal_redirect(request): """ Forces a GET redirect. Use this if you do a parent redirect to your view if your view is csrf protected. """ encoded_url = request.GET.get('page', '') unquoted_url = urllib2.unquote(encoded_url) if validate_redirect(unquoted_url): return render(request, 'facebook/internalredirecter.html', {'destination': urllib2.unquote(unquoted_url)}) else: return HttpResponseForbidden( 'The next= paramater is not an allowed redirect url.')