From c99c8fe1f8487590b3d1b54d734d982546cdb239 Mon Sep 17 00:00:00 2001
From: Brian Ridings <bdrid001@gmail.com>
Date: Mon, 3 Feb 2014 13:08:34 -0500
Subject: [PATCH] Changed Views to accept CSRF token

---
 app.js                     | 2 +-
 views/account/login.jade   | 2 +-
 views/account/profile.jade | 6 +++---
 views/account/signup.jade  | 2 +-
 views/contact.jade         | 2 +-
 5 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/app.js b/app.js
index 41c9d9e4ae..4d2e73c67b 100755
--- a/app.js
+++ b/app.js
@@ -79,7 +79,7 @@ app.use(passport.initialize());
 app.use(passport.session());
 app.use(function(req, res, next) {
   res.locals.user = req.user;
-  res.locals.token = req.csrfToken();
+  res.locals.token = req.csrfToken(); 
   next();
 });
 app.use(flash());
diff --git a/views/account/login.jade b/views/account/login.jade
index 23ea7cd3db..48467587a9 100644
--- a/views/account/login.jade
+++ b/views/account/login.jade
@@ -25,7 +25,7 @@ block content
         label.control-label(for='username') Password
         input.form-control(type='password', name='password', id='password', placeholder='Password')
       .form-group
-        input.form-control(type='hidden', name='_csrf', value=token)
+        input.form-control(type='hidden', name='_csrf', value=token) 
       .form-group
         button.btn.btn-primary(type='submit')
           i.fa.fa-unlock-alt
diff --git a/views/account/profile.jade b/views/account/profile.jade
index e8504962b8..a47a2eb4c3 100644
--- a/views/account/profile.jade
+++ b/views/account/profile.jade
@@ -31,7 +31,7 @@ block content
       .col-xs-4
         input.form-control(type='text', name='website', id='website', value='#{user.profile.website}')
     .form-group
-        input.form-control(type='hidden', name='_csrf', value=token)
+        input.form-control(type='hidden', name='_csrf', value=token) 
     .form-group
       .col-xs-offset-2.col-xs-4
         button.btn.btn.btn-primary(type='submit') Update Profile
@@ -52,7 +52,7 @@ block content
       .col-xs-4
         input.form-control(type='password', name='confirmPassword', id='confirmPassword')
     .form-group
-        input.form-control(type='hidden', name='_csrf', value=token)
+        input.form-control(type='hidden', name='_csrf', value=token) 
     .form-group
       .col-xs-offset-3.col-xs-4
         button.btn.btn.btn-primary(type='submit') Change Password
@@ -85,4 +85,4 @@ block content
   if user.github
     p: a.text-danger(href='/account/unlink/github') Unlink your GitHub account
   else
-    p: a(href='/auth/github') Link your GitHub account
+    p: a(href='/auth/github') Link your GitHub account
\ No newline at end of file
diff --git a/views/account/signup.jade b/views/account/signup.jade
index 0d6e8aa7dd..8fdc9f7d72 100644
--- a/views/account/signup.jade
+++ b/views/account/signup.jade
@@ -16,7 +16,7 @@ block content
       .col-sm-7
         input.form-control(type='password', name='confirmPassword', id='confirmPassword', placeholder='Confirm Password')
     .form-group
-        input.form-control(type='hidden', name='_csrf', value=token)
+        input.form-control(type='hidden', name='_csrf', value=token) 
     .form-group
       .col-sm-offset-3.col-sm-7
         button.btn.btn-success(type='submit')
diff --git a/views/contact.jade b/views/contact.jade
index c846ead911..0aad190068 100644
--- a/views/contact.jade
+++ b/views/contact.jade
@@ -18,7 +18,7 @@ block content
       .col-sm-8
         textarea.form-control(type='text', name='message', id='message', rows='7')
     .form-group
-        input.form-control(type='hidden', name='_csrf', value=token)
+        input.form-control(type='hidden', name='_csrf', value=token) 
     .form-group
       .col-sm-offset-2.col-sm-8
         button.btn.btn-default(type='submit')