Used double quotation marks for csrf form element.

2025-11-07 07:15:35 +00:00 · 2018-05-03 16:57:18 +10:00
parent 9e86185936
commit 98019df855
2 changed files with 2 additions and 2 deletions
--- a/django/template/defaulttags.py
+++ b/django/template/defaulttags.py
@@ -54,7 +54,7 @@ class CsrfTokenNode(Node):
            if csrf_token == 'NOTPROVIDED':
                return format_html("")
            else:
-                return format_html("<input type='hidden' name='csrfmiddlewaretoken' value='{}'>", csrf_token)
+                return format_html('<input type="hidden" name="csrfmiddlewaretoken" value="{}">', csrf_token)
        else:
            # It's very probable that the token is missing because of
            # misconfiguration, so we raise a warning