I'm using django.contrib.auth.views.logi开发者_运维百科n to log in users. When login is failed, the user and password fields get posted back to the form.
What's the proper way to clean those?
Pass render_value=False when you create your password field's PasswordInput widget.
class YourAuthenticationForm(AuthenticationForm):
password = forms.CharField(widget=forms.PasswordInput(render_value=False))
精彩评论