Ticket #8968: fix_8968.patch

django/contrib/comments/views/moderation.py

@@ -9 +9 @@
 from django.contrib.comments import signals
 
 #@login_required
-def flag(request, comment_id, next=None):
+def flag(request, comment_id):
     """
     Flags a comment. Confirmation on GET, action on POST.
 
@@ -34 +34 @@
             created = created,
             request = request,
         )
-        return next_redirect(request.POST.copy(), next, flag_done, c=comment.pk)
+        return next_redirect(request.POST.copy(), None, flag_done, c=comment.pk)
 
     # Render a form on GET
     else:
+        next = request.GET.get('next')
         return render_to_response('comments/flag.html',
             {'comment': comment, "next": next},
             template.RequestContext(request)
@@ -45 +46 @@
 flag = login_required(flag)
 
 #@permission_required("comments.delete_comment")
-def delete(request, comment_id, next=None):
+def delete(request, comment_id):
     """
     Deletes a comment. Confirmation on GET, action on POST. Requires the "can
     moderate comments" permission.
@@ -74 +75 @@
             created = created,
             request = request,
         )
-        return next_redirect(request.POST.copy(), next, delete_done, c=comment.pk)
+        return next_redirect(request.POST.copy(), request.GET.get('next',None), delete_done, c=comment.pk)
 
     # Render a form on GET
     else:
+        next = request.GET.get('next')
         return render_to_response('comments/delete.html',
             {'comment': comment, "next": next},
             template.RequestContext(request)
@@ -85 +87 @@
 delete = permission_required("comments.can_moderate")(delete)
 
 #@permission_required("comments.can_moderate")
-def approve(request, comment_id, next=None):
+def approve(request, comment_id):
     """
     Approve a comment (that is, mark it as public and non-removed). Confirmation
     on GET, action on POST. Requires the "can moderate comments" permission.
@@ -117 +119 @@
             created = created,
             request = request,
         )
-        return next_redirect(request.POST.copy(), next, approve_done, c=comment.pk)
+        return next_redirect(request.POST.copy(), None, approve_done, c=comment.pk)
 
     # Render a form on GET
     else:
+        next = request.GET.get('next')
         return render_to_response('comments/approve.html',
             {'comment': comment, "next": next},
             template.RequestContext(request)

tests/regressiontests/comment_tests/tests/moderation_view_tests.py

@@ -3 +3 @@
 from django.contrib.contenttypes.models import ContentType
 from regressiontests.comment_tests.tests import CommentTestCase
 from django.contrib.comments import signals
-
+import re
 class FlagViewTests(CommentTestCase):
 
     def testFlagGet(self):
@@ -92 +92 @@
         self.client.login(username="normaluser", password="normaluser")
         response = self.client.post("/delete/%d/" % pk)
         self.assertEqual(response["Location"], "http://testserver/deleted/?c=%d" % pk)
+
+        response = self.client.post("/delete/%d/" % pk,{"next":"/somewhere/else/"})
+        location = response["Location"]
+        match = re.search(r"^http://testserver/somewhere/else/\?c=\d+$", location)
+        self.failUnless(match != None, "Unexpected redirect location: %s" % location)
         c = Comment.objects.get(pk=pk)
         self.failUnless(c.is_removed)
         self.assertEqual(c.flags.filter(flag=CommentFlag.MODERATOR_DELETION, user__username="normaluser").count(), 1)
@@ -106 +111 @@
 
         # Post a comment and check the signals
         self.testDeletePost()
-        self.assertEqual(received_signals, [signals.comment_was_flagged])
+        self.assertEqual(received_signals, [signals.comment_was_flagged,signals.comment_was_flagged])
 
     def testDeletedView(self):
         comments = self.createSomeComments()
         pk = comments[0].pk
         response = self.client.get("/deleted/", data={"c":pk})
         self.assertTemplateUsed(response, "comments/deleted.html")
+
 
 class ApproveViewTests(CommentTestCase):