From 9b11a6aded1d02e164ced12491a5beba5984f4d3 Mon Sep 17 00:00:00 2001
From: Piero Toffanin <pt@masseranolabs.com>
Date: Wed, 19 Aug 2020 09:13:45 -0400
Subject: [PATCH 1/2] Ensure CSRF cookie on public views

---
 app/views/public.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/app/views/public.py b/app/views/public.py
index 0d9d316d..f0df5531 100644
--- a/app/views/public.py
+++ b/app/views/public.py
@@ -7,7 +7,7 @@ from django.shortcuts import render
 
 from app.api.tasks import TaskSerializer
 from app.models import Task
-
+from django.views.decorators.csrf import ensure_csrf_cookie
 
 def get_public_task(task_pk):
     """
@@ -18,6 +18,7 @@ def get_public_task(task_pk):
        raise Http404()
     return task
 
+@ensure_csrf_cookie
 def handle_map(request, template, task_pk=None, hide_title=False):
     task = get_public_task(task_pk)
 
@@ -36,6 +37,7 @@ def map(request, task_pk=None):
 def map_iframe(request, task_pk=None):
     return handle_map(request, 'app/public/map_iframe.html', task_pk, True)
 
+@ensure_csrf_cookie
 def handle_model_display(request, template, task_pk=None):
     task = get_public_task(task_pk)
 

From 2e435a8be7d78e05783b4b882d617dd971e7035e Mon Sep 17 00:00:00 2001
From: Piero Toffanin <pt@masseranolabs.com>
Date: Wed, 19 Aug 2020 09:28:59 -0400
Subject: [PATCH 2/2] Update NodeODM ref

---
 nodeodm/external/NodeODM | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/nodeodm/external/NodeODM b/nodeodm/external/NodeODM
index 06a74596..fd929e27 160000
--- a/nodeodm/external/NodeODM
+++ b/nodeodm/external/NodeODM
@@ -1 +1 @@
-Subproject commit 06a74596a3dd0fd56a89d2467032ae89ef921754
+Subproject commit fd929e2766911ce8a018d652dca3b1439a9f3466