diff options
| author | Luke Plant <L.Plant.98@cantab.net> | 2011-05-09 23:45:54 +0000 |
|---|---|---|
| committer | Luke Plant <L.Plant.98@cantab.net> | 2011-05-09 23:45:54 +0000 |
| commit | cb060f0f340356ac71ed7db5399753edce278766 (patch) | |
| tree | de4b482840b4be8b0f8695a33c33c03418e2a7c5 /tests/regressiontests/admin_scripts/complex_app/admin | |
| parent | 8cbcf1d3a60a0ba1a6f3ddde9317ac07b67c6c5d (diff) | |
Fixed #15258 - Ajax CSRF protection doesn't apply to PUT or DELETE requests
Thanks to brodie for the report, and further input from tow21
This is a potentially backwards incompatible change - if you were doing
PUT/DELETE requests and relying on the lack of protection, you will need to
update your code, as noted in the releaste notes.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@16201 bcc190cf-cafb-0310-a4f2-bffc1f526a37
Diffstat (limited to 'tests/regressiontests/admin_scripts/complex_app/admin')
0 files changed, 0 insertions, 0 deletions
