nyaa-pantsu

Albirew/nyaa-pantsu

Archivé

Bifurcation 0

Graphe des révisions

Auteur	SHA1	Message	Date
akuma06	38a55e88e9	Fix for csrf (#923 ) * Merge remote-tracking branch 'refs/remotes/origin/dev' into fix-for-csrf Fix CSRF protection Seems like it doesn't work anymore... I tried to fix it but couldn't get /api without csrf. So I changed the dependency for another csrf package (nosurf). Behavior: Same as previously. You just have to include the block csrf_token * changing dependency to nosurf	2017-06-05 11:33:48 +10:00
akuma06	3ec367a759	CSRF Support + better key for context * Added new dep: gorilla/csrf * CSRF field in forms * CSRF variable in commontemplatevariables * New key for messages and user context Please change EnableSecureCSRF to false when testing locally and don't merge config/env.go with the changes	2017-05-29 17:07:18 +02:00

Auteur

SHA1

Message

Date

akuma06

38a55e88e9

Fix for csrf (#923 )

* Merge remote-tracking branch 'refs/remotes/origin/dev' into fix-for-csrf

Fix CSRF protection

Seems like it doesn't work anymore...
I tried to
fix it but couldn't get /api without csrf. So I changed the
dependency
for another csrf package (nosurf).
Behavior: Same as previously. You
just have to include the block
csrf_token

* changing dependency to nosurf

2017-06-05 11:33:48 +10:00

akuma06

3ec367a759

CSRF Support + better key for context

* Added new dep: gorilla/csrf
* CSRF field in forms
* CSRF variable in commontemplatevariables
* New key for messages and user context

Please change EnableSecureCSRF to false when testing locally and don't
merge config/env.go with the changes

2017-05-29 17:07:18 +02:00

2 commits