search

bhch / tornadmin

Admin site for Tornado web server
https://tornadmin.rtfd.io
BSD 3-Clause "New" or "Revised" License
0 stars 0 forks source link

Use XSRF token on admin forms, list actions and other places #11

Closed bhch closed 2 years ago

bhch commented 2 years ago
  1. Admin forms
  2. List actions
  3. Delete modal
  4. Login/Logout
bhch commented 2 years ago

We are now using xsrf token in forms. However, to enforce the token check, the app setting xsrf_cookies needs to be set True.