Closed matthinz closed 2 years ago
@rahearn This is failing the ZAP scan because of lack of CSRF on the <form>
I'm using for filtering. I don't think this form needs any anti-CSRF protection, but also a form may not end up being the mechanism for this filtering. But other than that I think this is ready for you to take a look.
Forgot to add my other thoughts to the review.
1) I have some concerns about the checkbox UX, but I'm totally fine with it for now and adjust after research/design. 2) Overall, I really like the design you went with and think it's a solid foundation to build on.
Yeah, I am 100% not intending for this to be the final UX.
Work in progress on event listing page. See Trello
Things this does
Page
model for/events