id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
26181	AngularJS CSRF example is incorrect	Javier Liendo	Mahendra Yadav	"On

[https://docs.djangoproject.com/en/1.9/ref/csrf/#ajax], it says:

If you’re using AngularJS 1.1.3 and newer, it’s sufficient to configure the $http provider with the cookie and header names:


{{{
$http.defaults.xsrfCookieName = 'csrftoken';
$http.defaults.xsrfHeaderName = 'X-CSRFToken';
}}}

I think that it should read,


{{{
$httpProvider.defaults.xsrfCookieName = 'csrftoken';
$httpProvider.defaults.xsrfHeaderName = 'X-CSRFToken';
}}}


On angular HTTP default headers are defined on the $httpProvider object.
"	Bug	closed	Documentation	1.9	Normal	fixed	CSRF, angular		Ready for checkin	1	0	0	0	1	0