Easier PCI DSS compliance for payment pages (#4273)

* Assign names to compressed scripts * Make PCI-relevant pages detectable * Make payment summary markup more consistant to easy work in tracking plugin * Add docs note
2026-05-06 15:24:02 +00:00 · 2024-07-31 13:11:38 +02:00
parent 78cfbd6460
commit 13720e731e
12 changed files with 68 additions and 20 deletions
--- a/src/pretix/plugins/paypal2/templates/pretixplugins/paypal2/presale_head.html
+++ b/src/pretix/plugins/paypal2/templates/pretixplugins/paypal2/presale_head.html
@@ -2,7 +2,7 @@
 {% load compress %}
 {% load i18n %}

-{% compress js %}
+{% compress js file paypal %}
    <script type="text/javascript" src="{% static "pretixplugins/paypal2/pretix-paypal.js" %}"></script>
 {% endcompress %}

--- a/src/pretix/plugins/paypal2/views.py
+++ b/src/pretix/plugins/paypal2/views.py
@@ -185,6 +185,10 @@ class XHRView(View):
 class PayView(PaypalOrderView, TemplateView):
    template_name = ''

+    def dispatch(self, request, *args, **kwargs):
+        self.request.pci_dss_payment_page = True
+        return super().dispatch(request, *args, **kwargs)
+
    def get(self, request, *args, **kwargs):
        if self.payment.state != OrderPayment.PAYMENT_STATE_CREATED:
            return self._redirect_to_order()