Merge pull request #2 from tomchristie/master

Update to latest
author: Philip Douglas 2013-07-31 07:45:05 -0700
committer: Philip Douglas 2013-07-31 07:45:05 -0700
commit: c058ab36b13a6979c57760d9af2eb21ec3165e7d (patch)
tree: 9c352f0ebaddf18b03e45de9bf4ee3ad53377e17 /docs/topics/ajax-csrf-cors.md
parent: bf8e71c455a47a53898f8239ac7dad47e5f1d53a (diff)
parent: 43a5f8183c90f1056bbf33bb1402e76883aeb1fd (diff)
download: django-rest-framework-c058ab36b13a6979c57760d9af2eb21ec3165e7d.tar.bz2
1 files changed, 1 insertions, 1 deletions
diff --git a/docs/topics/ajax-csrf-cors.md b/docs/topics/ajax-csrf-cors.md
index 4566f38b..0555b84d 100644
--- a/docs/topics/ajax-csrf-cors.md
+++ b/docs/topics/ajax-csrf-cors.md
@@ -23,7 +23,7 @@ To guard against these type of attacks, you need to do two things:
 
 If you're using `SessionAuthentication` you'll need to include valid CSRF tokens for any `POST`, `PUT`, `PATCH` or `DELETE` operations.
 
-The Django documentation describes how to [include CSRF tokens in AJAX requests][csrf-ajax].
+In order to make AJAX requests, you need to include CSRF token in the HTTP header, as [described in the Django documentation][csrf-ajax].
 
 ## CORS
author	Philip Douglas	2013-07-31 07:45:05 -0700
committer	Philip Douglas	2013-07-31 07:45:05 -0700
commit	c058ab36b13a6979c57760d9af2eb21ec3165e7d (patch)
tree	9c352f0ebaddf18b03e45de9bf4ee3ad53377e17 /docs/topics/ajax-csrf-cors.md
parent	bf8e71c455a47a53898f8239ac7dad47e5f1d53a (diff)
parent	43a5f8183c90f1056bbf33bb1402e76883aeb1fd (diff)
download	django-rest-framework-c058ab36b13a6979c57760d9af2eb21ec3165e7d.tar.bz2