Open lsemel opened 13 years ago
joestump
commented
13 years ago I was planning on building Django's CSRF tokens into the entire system so that we can use those tokens automatically within the framework. I haven't gotten around to it yet though.
joestump
commented
13 years ago You can, however, check for the CSRF stuff by overriding ModelEndpoint.authenticate() and checking the request that's passed to that for CSRF stuff.
I'm trying to test my Ajax methods by issuing requests from my browser as I write them, and notice using the decorator @csrf_except around my endpoint function doesn't work, because the function in endpoints.py isn't the real view function, so the decorator has no effect. Any idea how to get around this?