From cdcfb7fa44703d147bec4788db6425c0847abc57 Mon Sep 17 00:00:00 2001
From: TJ Horner <me@tjhorner.com>
Date: Thu, 1 Jul 2021 20:55:51 -0400
Subject: [PATCH] Exempt /add route from CSRF

---
 archivebox/core/views.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/archivebox/core/views.py b/archivebox/core/views.py
index c056cd65..5385add9 100644
--- a/archivebox/core/views.py
+++ b/archivebox/core/views.py
@@ -11,6 +11,8 @@ from django.views.generic.list import ListView
 from django.views.generic import FormView
 from django.db.models import Q
 from django.contrib.auth.mixins import UserPassesTestMixin
+from django.views.decorators.csrf import csrf_exempt
+from django.utils.decorators import method_decorator
 
 from core.models import Snapshot
 from core.forms import AddLinkForm
@@ -236,7 +238,7 @@ class PublicIndexView(ListView):
         else:
             return redirect(f'/admin/login/?next={self.request.path}')
 
-
+@method_decorator(csrf_exempt, name='dispatch')
 class AddView(UserPassesTestMixin, FormView):
     template_name = "add.html"
     form_class = AddLinkForm