search

bradleyg / django-s3direct

Directly upload files to S3 compatible services with Django.
MIT License
661 stars 234 forks source link

Hardcoded CSRF header name #174

Open ron8mcr opened 5 years ago

ron8mcr commented 5 years ago

Name X-CSRFToken is hardcoded in JS code, so in case of custom setting CSRF_HEADER_NAME request is blocked because of invalid CSRF token