old-djangae-scaffold icon indicating copy to clipboard operation
old-djangae-scaffold copied to clipboard

Published 20 hours ago verified publisher icon potatolondon

Remove session-csrf

Open adamalton opened this issue 6 years ago • 1 comments

This is now included as part of Django (from 1.10 I think), so we don't need to use the separate repo.

adamalton avatar Mar 24 '18 11:03 adamalton

New in Django 1.11. https://docs.djangoproject.com/en/1.11/ref/settings/#std:setting-CSRF_USE_SESSIONS

Note that mozilla/django-session-csrf allows using memcache to store tokens for anonymous users, rather than a full session. Django's session-based csrf implementation does not.

davidwtbuxton avatar Mar 26 '18 16:03 davidwtbuxton