yesod

haskell/yesod

Fork 0

Commit Graph

Author	SHA1	Message	Date
Maximilian Tagher	e6287362ad	Default CSRF tokens to the root path "/" * The default path of cookies is the current path making the request * e.g. an AJAX request made from http://example.com/foo/bar would be /foo * This causes multiple CSRF tokens to build up as you navigate a site * This will cause errors if the CSRF tokens have different values, and an invalid token is sent. * Closes #1247	2016-08-16 07:25:41 -07:00
Maximilian Tagher	33982b2112	Add CSRF protection functions/middleware that support AJAX requests	2015-08-17 16:52:39 -07:00

Author

SHA1

Message

Date

Maximilian Tagher

e6287362ad

Default CSRF tokens to the root path "/"

* The default path of cookies is the current path making the request
  * e.g. an AJAX request made from http://example.com/foo/bar would be /foo
  * This causes multiple CSRF tokens to build up as you navigate a site
  * This will cause errors if the CSRF tokens have different values, and an invalid token is sent.
* Closes #1247

2016-08-16 07:25:41 -07:00

Maximilian Tagher

33982b2112

Add CSRF protection functions/middleware that support AJAX requests

2015-08-17 16:52:39 -07:00

2 Commits