Opened 15 years ago
Closed 15 years ago
#13292 closed (invalid)
An option to turn off CSRF for REST requests
Reported by: | anonymous | Owned by: | nobody |
---|---|---|---|
Component: | HTTP handling | Version: | dev |
Severity: | Keywords: | ||
Cc: | Triage Stage: | Unreviewed | |
Has patch: | no | Needs documentation: | no |
Needs tests: | no | Patch needs improvement: | no |
Easy pickings: | no | UI/UX: | no |
Change History (2)
comment:1 by , 15 years ago
comment:2 by , 15 years ago
Resolution: | → invalid |
---|---|
Status: | new → closed |
Note:
See TracTickets
for help on using tickets.
As noted in the answers on that StackOverflow post, the
csrf_exempt
decorator is the correct solution here. I'll leave it to an official triager or core dev to decide on this ticket, but I'm guessing it'll be a wontfix...