clicking the 'hide' button on the welcome broadcast message throws a 403 (via ajax) which is ignored. This is due to the changed CSRF handling for AJAX in 1.2.5 - http://www.djangoproject.com/weblog/2011/feb/08/security/
Ah thanks for catching that. Wanna throw a @csrf_exempt decorator on the view that handles those requests and submit a pull request? :-)
This has been merged
Status: NEW → RESOLVED
Last Resolved: 8 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.