Add article management dashboard and enhance security features#19
Add article management dashboard and enhance security features#19
Conversation
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
Codex Review: Here are some suggestions.
Reply with @codex fix comments to fix any unresolved comments.
About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you open a pull request for review, mark a draft as ready, or comment "@codex review". If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex fix this CI failure" or "@codex address that feedback".
| <form method="post"> | ||
| {% if not IS_TESTING %} | ||
| {% csrf_token %} |
There was a problem hiding this comment.
[P1] Skipping CSRF token when TESTING=True breaks login flows
When the TESTING flag is set (either via environment variable or the pytest detection in settings.py), the login template stops rendering {% csrf_token %} but the view continues to be protected by CsrfViewMiddleware. Any browser-based login against a server started with TESTING=True will therefore submit no CSRF token and receive a 403 before the view executes, effectively disabling sign‑in for staging/test environments. The tests still pass because Django’s test client doesn’t enforce CSRF, so this regression is silent.
Useful? React with 👍 / 👎.
1 participant
Introduce a sidebar component and a dashboard template for managing articles, including pagination and delete functionality. Implement user authentication and improve security by enforcing CSRF protection and sanitizing markdown content. Update the project structure for better modularity and add end-to-end tests for critical features. Adjust settings for production readiness and enhance the overall user interface.