Re: [PATCH] Enable CsrfViewMiddleware -- make CSRF protection required by default

Поиск
Список
Период
Сортировка
От Marti Raudsepp
Тема Re: [PATCH] Enable CsrfViewMiddleware -- make CSRF protection required by default
Дата
Msg-id CABRT9RDPa2evS_FxcK-knTcXDaSwx0dFY2iZecunXoc26XQPSA@mail.gmail.com
обсуждение исходный текст
Ответ на Re: [PATCH] Enable CsrfViewMiddleware -- make CSRF protection required by default  (Magnus Hagander <magnus@hagander.net>)
Ответы Re: [PATCH] Enable CsrfViewMiddleware -- make CSRF protection required by default  (Magnus Hagander <magnus@hagander.net>)
Список pgsql-www
Дерево обсуждения 
On Wed, Oct 31, 2012 at 7:29 PM, Magnus Hagander <magnus@hagander.net> wrote:
> The diff appears to be reversed. But that's easy enough to deal with during
> commit.

No, it's not reversed. I'm removing the explicit @csrf_protect
decorators because all views are now protected by default.

> Have you verified that it works with django 1.2 as well? The production
> deployment is on that quite old version still...

Yeah, I developed and tested this on Django 1.2

Regards,
Marti

В списке pgsql-www по дате отправления:

Предыдущее
От: Magnus Hagander
Дата:
Сообщение: Re: [PATCH] Enable CsrfViewMiddleware -- make CSRF protection required by default
Следующее
От: Josh Berkus
Дата:
Сообщение: Re: Search points to ancient manuals