#9977: CSRFMiddleware needs template tag ---------------------------------------------+------------------------------ Reporter: bthomas | Owner: lukeplant Status: assigned | Milestone: Component: HTTP handling | Version: SVN Resolution: | Keywords: csrf Stage: Design decision needed | Has_patch: 1 Needs_docs: 1 | Needs_tests: 0 Needs_better_patch: 1 | ---------------------------------------------+------------------------------ Comment (by lukeplant):
OK, I've had another think about this, and since it is getting rather complicated, I've created a wiki page: CsrfProtection Let's move any discussion to a 'Talk' section at the bottom of that page. I haven't thought about the proposal you made about the optional use of session, but it seems a bit complex, and I think what I've come up with on that page covers all our bases a bit better. -- Ticket URL: <http://code.djangoproject.com/ticket/9977#comment:35> Django <http://code.djangoproject.com/> The Web framework for perfectionists with deadlines. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django updates" group. To post to this group, send email to django-updates@googlegroups.com To unsubscribe from this group, send email to django-updates+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/django-updates?hl=en -~----------~----~----~----~------~----~------~--~---