Changes between Initial Version and Version 1 of Ticket #28699, comment 16
- Timestamp:
- Dec 5, 2018, 7:34:01 AM (5 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #28699, comment 16
initial v1 1 The PR here looks fine, rethe discussion, but I'm missing a crucial part in my understanding here: I can't see how you're meant to make a successful CSRF check in the **same request** as a `REMOTE_USER` login...1 The PR here looks as if it implements the discussion, but I'm missing a crucial part in my understanding here: I can't see how you're meant to make a successful CSRF check in the **same request** as a `REMOTE_USER` login... 2 2 3 3 As I read it, if `RemoteUserMiddleware` is first then: