Browse files

[1.3.X] Added a note about the AJAX CSRF example not working on jQuer…

…y 1.5

Backport of [16543] from trunk.

git-svn-id: bcc190cf-cafb-0310-a4f2-bffc1f526a37
  • Loading branch information...
1 parent a925b37 commit 2a1874521e92d569d9daf88567247bfbf0fcfc25 @brosner brosner committed Jul 14, 2011
Showing with 5 additions and 0 deletions.
  1. +5 −0 docs/ref/contrib/csrf.txt
@@ -133,6 +133,11 @@ that allow headers to be set on every request. In jQuery, you can use the
+.. note::
+ Due to a bug introduced in jQuery 1.5, the example above will not work
+ correctly on that version. Make sure you are running at least jQuery 1.5.1.
Adding this to a javascript file that is included on your site will ensure that
AJAX POST requests that are made via jQuery will not be caught by the CSRF

0 comments on commit 2a18745

Please sign in to comment.