Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Browse files

[1.3.X] Added a note about the AJAX CSRF example not working on jQuer…

…y 1.5

Backport of [16543] from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16544 bcc190cf-cafb-0310-a4f2-bffc1f526a37
  • Loading branch information...
commit 2a1874521e92d569d9daf88567247bfbf0fcfc25 1 parent a925b37
Brian Rosner brosner authored
Showing with 5 additions and 0 deletions.
  1. +5 −0 docs/ref/contrib/csrf.txt
5 docs/ref/contrib/csrf.txt
View
@@ -133,6 +133,11 @@ that allow headers to be set on every request. In jQuery, you can use the
}
});
+.. note::
+
+ Due to a bug introduced in jQuery 1.5, the example above will not work
+ correctly on that version. Make sure you are running at least jQuery 1.5.1.
+
Adding this to a javascript file that is included on your site will ensure that
AJAX POST requests that are made via jQuery will not be caught by the CSRF
protection.
Please sign in to comment.
Something went wrong with that request. Please try again.