#15258: Ajax CSRF protection doesn't apply to PUT or DELETE requests
------------------------------------------+---------------------------------
Reporter: brodie | Owner: nobody
Status: new | Milestone:
Component: Core framework | Version: 1.2
Resolution: | Keywords: csrf ajax
Triage Stage: Accepted | Has patch: 1
Needs documentation: 0 | Needs tests: 1
Patch needs improvement: 0 |
------------------------------------------+---------------------------------
Changes (by Alex):
* needs_better_patch: => 0
* has_patch: 0 => 1
* stage: Unreviewed => Accepted
* needs_tests: => 1
* needs_docs: => 0
--
Ticket URL: <http://code.djangoproject.com/ticket/15258#comment:1>
Django <http://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en.
