diff --git a/superset/assets/javascripts/dashboard/Dashboard.jsx b/superset/assets/javascripts/dashboard/Dashboard.jsx
index 73348a46212d2..dc02a7ef14f44 100644
--- a/superset/assets/javascripts/dashboard/Dashboard.jsx
+++ b/superset/assets/javascripts/dashboard/Dashboard.jsx
@@ -336,6 +336,7 @@ export function dashboardContainer(dashboard) {
$(document).ready(() => {
// Getting bootstrapped data from the DOM
+ utils.initJQueryAjaxCSRF();
const dashboardData = $('.dashboard').data('dashboard');
const contextData = $('.dashboard').data('context');
diff --git a/superset/templates/superset/basic.html b/superset/templates/superset/basic.html
index d07fa665feaa3..a2e9200c647af 100644
--- a/superset/templates/superset/basic.html
+++ b/superset/templates/superset/basic.html
@@ -38,7 +38,12 @@
- {{ csrf_token() if csrf_token else None }}
+
{% endblock %}
diff --git a/superset/templates/superset/dashboard.html b/superset/templates/superset/dashboard.html
index f899d6fa0a24b..ae203ba3b1952 100644
--- a/superset/templates/superset/dashboard.html
+++ b/superset/templates/superset/dashboard.html
@@ -22,4 +22,10 @@
+
{% endblock %}
diff --git a/superset/views/core.py b/superset/views/core.py
index 70d220f59d92e..a3b708f2a65a8 100755
--- a/superset/views/core.py
+++ b/superset/views/core.py
@@ -2198,11 +2198,8 @@ def sqllab(self):
d = {
'defaultDbId': config.get('SQLLAB_DEFAULT_DBID'),
}
- from flask_wtf import FlaskForm
- ff = FlaskForm()
return self.render_template(
'superset/sqllab.html',
- csrf_token=ff.csrf_token,
bootstrap_data=json.dumps(d, default=utils.json_iso_dttm_ser)
)
appbuilder.add_view_no_menu(Superset)