Merge branch 'master' into resources-routers

author: Tom Christie 2013-03-18 21:03:05 +0000
committer: Tom Christie 2013-03-18 21:03:05 +0000
commit: 74fb366c595db87bb71baeffcacfb7d2482e3a18 (patch)
tree: 2e28cb52542742f32cdd3fbeb625f7f59cba0a3f /docs/topics/csrf.md
parent: 4c6396108704d38f534a16577de59178b1d0df3b (diff)
parent: 034c4ce4081dd6d15ea47fb8318754321a3faf0c (diff)
download: django-rest-framework-74fb366c595db87bb71baeffcacfb7d2482e3a18.tar.bz2
1 files changed, 0 insertions, 12 deletions
diff --git a/docs/topics/csrf.md b/docs/topics/csrf.md
deleted file mode 100644
index 043144c1..00000000
--- a/docs/topics/csrf.md
+++ /dev/null
@@ -1,12 +0,0 @@
-# Working with AJAX and CSRF
-
-> "Take a close look at possible CSRF / XSRF vulnerabilities on your own websites. They're the worst kind of vulnerability -- very easy to exploit by attackers, yet not so intuitively easy to understand for software developers, at least until you've been bitten by one."
->
->  &mdash; [Jeff Atwood][cite]
-
-* Explain need to add CSRF token to AJAX requests.
-* Explain deferred CSRF style used by REST framework
-* Why you should use Django's standard login/logout views, and not REST framework view
-
-
-[cite]: http://www.codinghorror.com/blog/2008/10/preventing-csrf-and-xsrf-attacks.html
author	Tom Christie	2013-03-18 21:03:05 +0000
committer	Tom Christie	2013-03-18 21:03:05 +0000
commit	74fb366c595db87bb71baeffcacfb7d2482e3a18 (patch)
tree	2e28cb52542742f32cdd3fbeb625f7f59cba0a3f /docs/topics/csrf.md
parent	4c6396108704d38f534a16577de59178b1d0df3b (diff)
parent	034c4ce4081dd6d15ea47fb8318754321a3faf0c (diff)
download	django-rest-framework-74fb366c595db87bb71baeffcacfb7d2482e3a18.tar.bz2