#8127: CSRF + AJAX
---------------------------------------------+------------------------------
Reporter: xlax | Owner: nobody
Status: new | Milestone:
Component: Contrib apps | Version: SVN
Resolution: | Keywords: CSRF AJAX
Stage: Design decision needed | Has_patch: 1
Needs_docs: 0 | Needs_tests: 1
Needs_better_patch: 0 |
---------------------------------------------+------------------------------
Comment (by xlax):
Perhaps the best way to go is to make CSRF generate a key per-standard,
and make it available. That way, at all points in the application, the
string is usable and the ajax user could implement that into the "form"
sent through.
--
Ticket URL: <http://code.djangoproject.com/ticket/8127#comment:11>
Django Code <http://code.djangoproject.com/>
The web framework for perfectionists with deadlines
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en
-~----------~----~----~----~------~----~------~--~---
