Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Browse files

Added a note about the AJAX CSRF example not working on jQuery 1.5

git-svn-id: http://code.djangoproject.com/svn/django/trunk@16543 bcc190cf-cafb-0310-a4f2-bffc1f526a37
  • Loading branch information...
commit 99cd76e2734694d22861b7c224fd1e2dcb643fa0 1 parent 3b77458
@brosner brosner authored
Showing with 5 additions and 0 deletions.
  1. +5 −0 docs/ref/contrib/csrf.txt
View
5 docs/ref/contrib/csrf.txt
@@ -128,6 +128,11 @@ that allow headers to be set on every request. In jQuery, you can use the
}
});
+.. note::
+
+ Due to a bug introduced in jQuery 1.5, the example above will not work
+ correctly on that version. Make sure you are running at least jQuery 1.5.1.
+
Adding this to a javascript file that is included on your site will ensure that
AJAX POST requests that are made via jQuery will not be caught by the CSRF
protection.
Please sign in to comment.
Something went wrong with that request. Please try again.