diff options
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/topics/forms/index.txt | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/docs/topics/forms/index.txt b/docs/topics/forms/index.txt index a8730871e5..8f7d25ddcb 100644 --- a/docs/topics/forms/index.txt +++ b/docs/topics/forms/index.txt @@ -80,7 +80,7 @@ all in plaintext. Neither would it be suitable for large quantities of data, or for binary data, such as an image. A web application that uses ``GET`` requests for admin forms is a security risk: it can be easy for an attacker to mimic a form's request to gain access to sensitive parts of the system. -``POST``, coupled with other protections like Django's:doc:`CSRF protection +``POST``, coupled with other protections like Django's :doc:`CSRF protection </ref/contrib/csrf/>` offers more control over access. On the other hand, ``GET`` is suitable for things like a web search form, |
