Handle JS-free POSTs in the login form.

2026-01-27 15:58:06 -05:00 · 2011-10-04 21:54:33 -07:00
parent 607cb4fa5a
commit 17dafa6a14
3 changed files with 9 additions and 16 deletions
--- a/r2/r2/controllers/errors.py
+++ b/r2/r2/controllers/errors.py
@@ -127,6 +127,9 @@ class ErrorSet(object):
    def __iter__(self):
        for x in self.errors:
            yield x
+
+    def __len__(self):
+        return len(self.errors)
        
    def add(self, error_name, msg_params = {}, field = None):
        msg = error_list[error_name]
--- a/r2/r2/controllers/post.py
+++ b/r2/r2/controllers/post.py
@@ -20,6 +20,7 @@
 # CondeNet, Inc. All Rights Reserved.
 ################################################################################
 from r2.lib.pages import *
+from reddit_base import cross_domain
 from api import ApiController
 from r2.lib.utils import Storage, query_string, UrlParser
 from r2.lib.emailer import opt_in, opt_out
@@ -172,38 +173,27 @@ class PostController(ApiController):
                                           msg_hash = msg_hash)).render()


+    @cross_domain([g.origin, g.https_endpoint], allow_credentials=True)
    @validate(dest = VDestination(default = "/"))
    def POST_login(self, dest, *a, **kw):
        ApiController.POST_login(self, *a, **kw)
        c.render_style = "html"
        c.response_content_type = ""

-        errors = list(c.errors)
-        if errors:
-            for e in errors:
-                if not e[0].endswith("_login"):
-                    msg = c.errors[e].message
-                    c.errors.remove(e)
-                    c.errors.add(e[0], msg)
-
+        if c.errors:
            return LoginPage(user_login = request.post.get('user'),
                             dest = dest).render()

        return self.redirect(dest)

+    @cross_domain([g.origin, g.https_endpoint], allow_credentials=True)
    @validate(dest = VDestination(default = "/"))
    def POST_reg(self, dest, *a, **kw):
        ApiController.POST_register(self, *a, **kw)
        c.render_style = "html"
        c.response_content_type = ""

-        errors = list(c.errors)
-        if errors:
-            for e in errors:
-                if not e[0].endswith("_reg"):
-                    msg = c.errors[e].message
-                    c.errors.remove(e)
-                    c.errors.add(e[0], msg)
+        if c.errors:
            return LoginPage(user_reg = request.post.get('user'),
                             dest = dest).render()

--- a/r2/r2/templates/loginformwide.html
+++ b/r2/r2/templates/loginformwide.html
@@ -29,7 +29,7 @@

 <% op = "login-main" %>
 <form method="post"
-      action="${add_sr(g.https_endpoint + '/post/' + op, nocname = True)}"
+      action="${add_sr(g.https_endpoint + '/post/login', nocname = True)}"
      id="login_${op}"
      class="login-form login-form-side">
  %if thing.cname: