On Wed, Sep 28, 2011 at 3:45 PM, sspross <[email protected]> wrote: > hi > > is it possible to deactivate the http referer checking in the Cross > Site Request Forgery protection? > > https://docs.djangoproject.com/en/dev/ref/contrib/csrf/ > > a flash application sends my django app a form and in flash we can't > set an Referer Header. So in case of HTTPS it fails. > > regards, > silvan >
On the page you linked to: https://docs.djangoproject.com/en/dev/ref/contrib/csrf/#csrf-protection-should-be-disabled-for-just-a-few-views HTH Tom -- You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
