kemal

luna/kemal

Fork 0

Commit graph

Author	SHA1	Message	Date
Mike Perham	22d6c1773e	Remove HTTP prefix, this is a Rack impl convention, not a standard.	2016-06-29 14:52:47 -07:00
Mike Perham	e407d0195c	Implement CSRF protection This adds a middleware which, when activated, will deny any form submission which does not include a valid `authenticity_token` parameter or `http-x-csrf-token` header with the request. The header and parameter names are identical to the ones supported by Ruby's rack-protection gem for interoperability purposes.	2016-06-28 15:50:43 -07:00

Author

SHA1

Message

Date

Mike Perham

22d6c1773e

Remove HTTP prefix, this is a Rack impl convention, not a standard.

2016-06-29 14:52:47 -07:00

Mike Perham

e407d0195c

Implement CSRF protection

This adds a middleware which, when activated, will deny any form submission which does not include a valid `authenticity_token` parameter or `http-x-csrf-token` header with the request.

The header and parameter names are identical to the ones supported by Ruby's rack-protection gem for interoperability purposes.

2016-06-28 15:50:43 -07:00

2 commits