o ¨ñiºã@s$dZddlmZGdd„deƒZdS)z> Custom middleware to exempt API routes from CSRF protection. é)ÚMiddlewareMixinc@seZdZdZdd„ZdS)ÚDisableCSRFForAPIa0 Middleware to disable CSRF protection for API endpoints. This is safe because REST APIs typically use token-based authentication or other authentication methods that don't require CSRF protection. This middleware must be placed BEFORE CsrfViewMiddleware in MIDDLEWARE settings. cCs|j d¡r t|ddƒdS)Nz/api/Ú_dont_enforce_csrf_checksT)ÚpathÚ startswithÚsetattr)ÚselfÚrequest©r ú9/var/www/html/philips/senior_engagement_app/middleware.pyÚprocess_requests  z!DisableCSRFForAPI.process_requestN)Ú__name__Ú __module__Ú __qualname__Ú__doc__r r r r r rs rN)rÚdjango.utils.deprecationrrr r r r Ús