Context Navigation

← Previous Ticket
Next Ticket →

#20332 closed Bug (duplicate)

You Might Be Logged Out If

Reported by:	csrf.django@…	Owned by:	nobody
Component:	CSRF	Version:	dev
Severity:	Normal	Keywords:	csrf, logout, authentication
Cc:		Triage Stage:	Unreviewed
Has patch:	no	Needs documentation:	no
Needs tests:	no	Patch needs improvement:	no
Easy pickings:	no	UI/UX:	no

Description (last modified by Alex Gaynor)

You might be logged out...

http://jsfiddle.net/CqvnJ/

Let's require POST to logout.

Change History (4)

comment:1 by csrf.django@…, 12 years ago

Type:	Uncategorized → Bug
Version:	1.5 → master

comment:2 by Alex Gaynor, 12 years ago

Description:	modified (diff)

Edited to remove CSRF attack.

comment:3 by Donald Stufft, 12 years ago

In the future please err on the side of caution and report any potential security issues to security@… (More details on responsibly disclosing security issues here).

comment:4 by Paul McMillan, 12 years ago

Resolution:	→ duplicate
Status:	new → closed

Closing this as a duplicate of https://code.djangoproject.com/ticket/15619

Note: See TracTickets for help on using tickets.

Download in other formats:

Issues

Context Navigation

#20332 closed Bug (duplicate)

You Might Be Logged Out If

Description (last modified by Alex Gaynor)

Change History (4)

comment:1 by csrf.django@…, 12 years ago

comment:2 by Alex Gaynor, 12 years ago

comment:3 by Donald Stufft, 12 years ago

comment:4 by Paul McMillan, 12 years ago

Download in other formats:

Django Links

Learn More

Get Involved

Get Help

Follow Us

Support Us