diff options
| author | Tom Christie | 2012-08-29 20:57:37 +0100 |
|---|---|---|
| committer | Tom Christie | 2012-08-29 20:57:37 +0100 |
| commit | 578017e01d1da4746ae0045268043cfd74d41b42 (patch) | |
| tree | d729eb93484247fa44b509a4b693811e6978a190 /docs/csrf.md | |
| parent | 21f59162db37c656b4f025cdd8e13cdb9933a4fc (diff) | |
| download | django-rest-framework-578017e01d1da4746ae0045268043cfd74d41b42.tar.bz2 | |
New docs
Diffstat (limited to 'docs/csrf.md')
| -rw-r--r-- | docs/csrf.md | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/docs/csrf.md b/docs/csrf.md new file mode 100644 index 00000000..8e0b9480 --- /dev/null +++ b/docs/csrf.md @@ -0,0 +1,4 @@ +REST framework and CSRF protection +================================== + +> "Take a close look at possible CSRF / XSRF vulnerabilities on your own websites. They're the worst kind of vulnerability -- very easy to exploit by attackers, yet not so intuitively easy to understand for software developers, at least until you've been bitten by one." - Jeff Atwood
\ No newline at end of file |