Custom CSRF error page added

DogukanUrker · Dec 21, 2023 · 72b388b · 72b388b
1 parent 79c09ee
commit 72b388b
Show file tree

Hide file tree

Showing 2 changed files with 17 additions and 1 deletion.
diff --git a/app.py b/app.py
@@ -31,7 +31,7 @@
 from routes.adminPanelComments import adminPanelCommentsBlueprint
 from routes.changeProfilePicture import changeProfilePictureBlueprint
 from dbChecker import dbFolder, usersTable, postsTable, commentsTable
-from flask_wtf.csrf import CSRFProtect
+from flask_wtf.csrf import CSRFProtect, CSRFError
 
 dbFolder()
 usersTable()
@@ -56,6 +56,11 @@ def notFound(e):
     return render_template("404.html"), 404
 
 
+@app.errorhandler(CSRFError)
+def handle_csrf_error(e):
+    return render_template("csrfError.html", reason=e.description), 400
+
+
 app.register_blueprint(postBlueprint)
 app.register_blueprint(userBlueprint)
 app.register_blueprint(indexBlueprint)

diff --git a/templates/csrfError.html b/templates/csrfError.html
@@ -0,0 +1,11 @@
+{% extends 'layout.html'%} {%block head%}
+<link
+  rel="icon"
+  href="data:image/svg+xml,<svg xmlns=%22http://www.w3.org/2000/svg%22 viewBox=%220 0 100 100%22><text y=%22.9em%22 font-size=%2290%22>🔎</text></svg>"
+/>
+{% endblock head %} {%block body%}
+<div class="errorMessage">
+  <h1>Fill the same form again.</h1>
+  <p>Reason: {{reason}}</p>
+</div>
+{% endblock body %}