CHANGES.txt | ●●●●● patch | view | raw | blame | history |
CHANGES.txt
@@ -1,3 +1,14 @@ unreleased ========== - Automatic CSRF checks are now disabled by default on exception views. They can be turned back on by setting the appropriate `require_csrf` option on the view. See https://github.com/Pylons/pyramid/pull/2517 - CSRF origin checks had a bug causing the checks to always fail. See https://github.com/Pylons/pyramid/pull/2512 1.7a1 (2016-04-16) ==================