Browse files

Added a note about the AJAX CSRF example not working on jQuery 1.5

git-svn-id: bcc190cf-cafb-0310-a4f2-bffc1f526a37
  • Loading branch information...
1 parent 3b77458 commit 99cd76e2734694d22861b7c224fd1e2dcb643fa0 @brosner brosner committed Jul 14, 2011
Showing with 5 additions and 0 deletions.
  1. +5 −0 docs/ref/contrib/csrf.txt
@@ -128,6 +128,11 @@ that allow headers to be set on every request. In jQuery, you can use the
+.. note::
+ Due to a bug introduced in jQuery 1.5, the example above will not work
+ correctly on that version. Make sure you are running at least jQuery 1.5.1.
Adding this to a javascript file that is included on your site will ensure that
AJAX POST requests that are made via jQuery will not be caught by the CSRF

0 comments on commit 99cd76e

Please sign in to comment.