Opened 5 years ago

Closed 5 years ago

#13292 closed (invalid)

An option to turn off CSRF for REST requests

Reported by: anonymous Owned by: nobody
Component: HTTP handling Version: master
Severity: Keywords:
Cc: Triage Stage: Unreviewed
Has patch: no Needs documentation: no
Needs tests: no Patch needs improvement: no
Easy pickings: UI/UX:

Change History (2)

comment:1 Changed 5 years ago by gabrielhurley

  • Needs documentation unset
  • Needs tests unset
  • Patch needs improvement unset

As noted in the answers on that StackOverflow post, the csrf_exempt decorator is the correct solution here. I'll leave it to an official triager or core dev to decide on this ticket, but I'm guessing it'll be a wontfix...

comment:2 Changed 5 years ago by russellm

  • Resolution set to invalid
  • Status changed from new to closed
Note: See TracTickets for help on using tickets.
Back to Top