parent: c5680b | patch | commitdiff
Chris McDonough
2012-09-19 643a83473a6faabd0ff08547a0cbca09e9cdda1c
refs
author Chris McDonough <chrism@plope.com>
Wednesday, September 19, 2012 10:46 +0200
committer Chris McDonough <chrism@plope.com>
Wednesday, September 19, 2012 10:46 +0200
commit643a83473a6faabd0ff08547a0cbca09e9cdda1c
tree 1825c27d957beff5509940215efbf97931dbe9af tree | zip | gz
parent c5680bbd7850c917ba1f1f68134ff4c8d3c37246 view | diff 
A ``check_csrf`` view predicate was added.  For example, you can now do
``config.add_view(someview, check_csrf=True)``.  When the predicate is
checked, if the ``csrf_token`` value in ``request.params`` matches the csrf
token in the request's session, the view will be permitted to execute.
Otherwise, it will not be permitted to execute.
10 files modified
177 ■■■■■ changed files
docs/glossary.rst 9 ●●●●● diff | view | raw | blame | history
docs/narr/introspector.rst 4 ●●●● diff | view | raw | blame | history
docs/narr/viewconfig.rst 31 ●●●●● diff | view | raw | blame | history
docs/whatsnew-1.4.rst 6 ●●●●● diff | view | raw | blame | history
pyramid/config/predicates.py 23 ●●●●● diff | view | raw | blame | history
pyramid/config/views.py 31 ●●●●● diff | view | raw | blame | history
pyramid/session.py 17 ●●●● diff | view | raw | blame | history
pyramid/tests/test_config/test_predicates.py 43 ●●●●● diff | view | raw | blame | history
pyramid/tests/test_session.py 11 ●●●● diff | view | raw | blame | history
pyramid/view.py 2 ●●● diff | view | raw | blame | history