diff --git a/src/core/views/sso.py b/src/core/views/sso.py
index c9d1f4023abf51637971f9fef65dbc5ed6f20ffc..ec25485126cb842701c7cdc8d3980e2d5197fb45 100644
--- a/src/core/views/sso.py
+++ b/src/core/views/sso.py
@@ -2,6 +2,7 @@ import calendar
 import json
 import logging
 
+from csp.decorators import csp_update
 from oauth2_provider.models import get_access_token_model
 from oauth2_provider.views import AuthorizationView, ClientProtectedScopedResourceView
 
@@ -24,12 +25,14 @@ class SelectedConferenceContextMixin:
         return ctx
 
 
+@method_decorator(csp_update(form_action='*'), name='dispatch')
 class OutOfBandDisplayTokenView(SelectedConferenceContextMixin, TemplateView):
     template_name = 'oauth2_provider/out-of-band-display-token.html'
 
 
+@method_decorator(csp_update(form_action='*'), name='dispatch')
 class AuthorizeView(SelectedConferenceContextMixin, AuthorizationView):
-    pass
+    template_name = 'oauth2_provider/authorize.html'
 
 
 @method_decorator(csrf_exempt, name='dispatch')