Changes between Initial Version and Version 1 of Ticket #31845
- Timestamp:
- Aug 1, 2020, 3:41:30 AM (4 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #31845 – Description
initial v1 2 2 3 3 At this line: https://github.com/django/django/blob/2.2.12/django/middleware/csrf.py#L280 4 while {{{referer.netloc}}} has trailing dot, one of the {{{good_hosts}}} comes from {{{request.get_host()}}} which strips the trailing dot.4 while {{{referer.netloc}}} has trailing dot, one of the {{{good_hosts}}} that is supposed to match comes from {{{request.get_host()}}} which strips the trailing dot. 5 5 {{{is_same_domain}}} does not consider domain strings with and without trailing dots the same domain. 6 6