Merge branch 'master' into many-fields

Conflicts: rest_framework/relations.py
author: Tom Christie 2013-01-30 13:41:56 +0000
committer: Tom Christie 2013-01-30 13:41:56 +0000
commit: be6df3ae3ce18bf4b55ae065ebd34198885e48df (patch)
tree: 3a96bb6a5075584add7e28c6d8d7f251ad785b4e /docs/topics/csrf.md
parent: 9a4d01d687d57601d37f9a930d37039cb9f6a6f2 (diff)
parent: 8021bb5d5089955b171173e60dcc0968e13d29ea (diff)
download: django-rest-framework-be6df3ae3ce18bf4b55ae065ebd34198885e48df.tar.bz2
1 files changed, 0 insertions, 12 deletions
diff --git a/docs/topics/csrf.md b/docs/topics/csrf.md
deleted file mode 100644
index 043144c1..00000000
--- a/docs/topics/csrf.md
+++ /dev/null
@@ -1,12 +0,0 @@
-# Working with AJAX and CSRF
-
-> "Take a close look at possible CSRF / XSRF vulnerabilities on your own websites. They're the worst kind of vulnerability -- very easy to exploit by attackers, yet not so intuitively easy to understand for software developers, at least until you've been bitten by one."
->
->  &mdash; [Jeff Atwood][cite]
-
-* Explain need to add CSRF token to AJAX requests.
-* Explain deferred CSRF style used by REST framework
-* Why you should use Django's standard login/logout views, and not REST framework view
-
-
-[cite]: http://www.codinghorror.com/blog/2008/10/preventing-csrf-and-xsrf-attacks.html
author	Tom Christie	2013-01-30 13:41:56 +0000
committer	Tom Christie	2013-01-30 13:41:56 +0000
commit	be6df3ae3ce18bf4b55ae065ebd34198885e48df (patch)
tree	3a96bb6a5075584add7e28c6d8d7f251ad785b4e /docs/topics/csrf.md
parent	9a4d01d687d57601d37f9a930d37039cb9f6a6f2 (diff)
parent	8021bb5d5089955b171173e60dcc0968e13d29ea (diff)
download	django-rest-framework-be6df3ae3ce18bf4b55ae065ebd34198885e48df.tar.bz2