#13292 (An option to turn off CSRF for REST requests) – Django

Context Navigation

← Previous Ticket
Next Ticket →

Opened 15 years ago

Closed 15 years ago

#13292 closed (invalid)

An option to turn off CSRF for REST requests

Reported by:	anonymous	Owned by:	nobody
Component:	HTTP handling	Version:	dev
Severity:		Keywords:
Cc:		Triage Stage:	Unreviewed
Has patch:	no	Needs documentation:	no
Needs tests:	no	Patch needs improvement:	no
Easy pickings:	no	UI/UX:	no

Description ¶

http://stackoverflow.com/questions/2405353/having-a-postable-api-and-djangos-csrf-middleware

Change History (2)

comment:1 by Gabriel Hurley, 15 years ago

As noted in the answers on that StackOverflow post, the csrf_exempt decorator is the correct solution here. I'll leave it to an official triager or core dev to decide on this ticket, but I'm guessing it'll be a wontfix...

comment:2 by Russell Keith-Magee, 15 years ago

Resolution:	→ invalid
Status:	new → closed

Note: See TracTickets for help on using tickets.

Download in other formats: