Easier PCI DSS compliance for payment pages (#4273)

* Assign names to compressed scripts * Make PCI-relevant pages detectable * Make payment summary markup more consistant to easy work in tracking plugin * Add docs note
2024-07-31 13:11:38 +02:00
parent 78cfbd6460
commit 13720e731e
12 changed files with 68 additions and 20 deletions
--- a/src/pretix/presale/checkoutflow.py
+++ b/src/pretix/presale/checkoutflow.py
@@ -1263,6 +1263,7 @@ class PaymentStep(CartMixin, TemplateFlowStep):

    def post(self, request):
        self.request = request
+        self.request.pci_dss_payment_page = True

        if "remove_payment" in request.POST:
            self._remove_payment(request.POST["remove_payment"])
@@ -1427,6 +1428,10 @@ class PaymentStep(CartMixin, TemplateFlowStep):

        return True

+    def get(self, request):
+        self.request.pci_dss_payment_page = True
+        return super().get(request)
+

 class ConfirmStep(CartMixin, AsyncAction, TemplateFlowStep):
    priority = 1001