moved key and value check for cookie to front of if statement

QueraTeam · May 14, 2024 · 2165c9d · 2165c9d
1 parent 227a380
commit 2165c9d
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/django_nextjs/render.py b/django_nextjs/render.py
@@ -49,7 +49,7 @@ def _get_nextjs_request_cookies(request: HttpRequest):
     (i.e. dont use HTTP unsafe methods or GraphQL mutations).
     https://docs.djangoproject.com/en/3.2/ref/csrf/#is-posting-an-arbitrary-csrf-token-pair-cookie-and-post-data-a-vulnerability
     """
-    unreserved_cookies = {k: v for k, v in request.COOKIES.items() if not morsel.isReservedKey(k) and k and v}
+    unreserved_cookies = {k: v for k, v in request.COOKIES.items() if k and v and not morsel.isReservedKey(k)}
     return {**unreserved_cookies, settings.CSRF_COOKIE_NAME: get_csrf_token(request)}