PuppetBoard: Upgrading WTForms to latest version and restoring CSRF Protection (#250)

Upgrading the following packages to the respected versions: WTForms==2.1 Flask-WTF==0.12 Werkzeug==0.11.0 Passing newly required metadata to the QueryForm constructor in puppetboard/app.py Apache >= 2.4 with mod_wsgi experienced a major issue where it would re-generate the app's secret key on each request. The fix for this turned out to be placing a permanent statis 'secret_key' value in the wsgi.py. Adding a block in README.rst on how to implement the user's own secret_key
2016-06-23 20:32:31 -04:00
parent adac2a46bf
commit da044271ee
4 changed files with 27 additions and 7 deletions
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,9 +1,9 @@
 Flask==0.10.1
-Flask-WTF==0.9.4
+Flask-WTF==0.12
 Jinja2==2.7.2
 MarkupSafe==0.19
-WTForms==1.0.5
-Werkzeug==0.9.4
+WTForms==2.1
+Werkzeug==0.11.10
 itsdangerous==0.23
 pypuppetdb==0.3.1
 requests==2.6.0