summaryrefslogtreecommitdiff
path: root/docs/ref
diff options
context:
space:
mode:
authorLuke Plant <L.Plant.98@cantab.net>2011-05-09 23:00:02 +0000
committerLuke Plant <L.Plant.98@cantab.net>2011-05-09 23:00:02 +0000
commitd3641d889b0cf6fde3ca7d08530ed55331a0607d (patch)
tree681ff6bf6ef1cd613684dd5b05b8da95b2e7c266 /docs/ref
parentbf7af2be15a0844f5c1ae9a47cb75fc255e0eaf6 (diff)
Clarified wording about use of 2 decorators in CSRF docs
git-svn-id: http://code.djangoproject.com/svn/django/trunk@16198 bcc190cf-cafb-0310-a4f2-bffc1f526a37
Diffstat (limited to 'docs/ref')
-rw-r--r--docs/ref/contrib/csrf.txt3
1 files changed, 2 insertions, 1 deletions
diff --git a/docs/ref/contrib/csrf.txt b/docs/ref/contrib/csrf.txt
index c3c01c0b06..762c517084 100644
--- a/docs/ref/contrib/csrf.txt
+++ b/docs/ref/contrib/csrf.txt
@@ -365,7 +365,8 @@ There may be some views that are unprotected and have been exempted by
``csrf_exempt``, but still need to include the CSRF token.
Solution: use :func:`~django.views.decorators.csrf.csrf_exempt` followed by
-:func:`~django.views.decorators.csrf.requires_csrf_token`.
+:func:`~django.views.decorators.csrf.requires_csrf_token`. (i.e. ``requires_csrf_token``
+should be the innermost decorator).
View needs protection for one path
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~