CSRF should use the variable
parent
ed8dfcd66a
commit
78fc891c1e
|
@ -477,7 +477,7 @@ added in the [pull request #40](https://github.com/sahat/hackathon-starter/pull/
|
|||
as part of CSRF protection.
|
||||
|
||||
```
|
||||
input(type='hidden', name='_csrf', value='_csrf')
|
||||
input(type='hidden', name='_csrf', value=_csrf)
|
||||
```
|
||||
|
||||
**Note:** It is now possible to whitelist certain URLs. In other words you can
|
||||
|
|
Loading…
Reference in New Issue