issues
search
maxcountryman
/
flask-seasurf
SeaSurf is a Flask extension for preventing cross-site request forgery (CSRF).
http://readthedocs.org/docs/flask-seasurf/
Other
190
stars
49
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Fixed docs/index.rst
#49
macrotim
closed
8 years ago
1
Document options loaded from app.config in init_app
#48
nomorepanic
opened
8 years ago
2
add exempt url prefix support
#47
killpanda
closed
9 years ago
7
Option to disable referer checks?
#46
ghost
closed
8 years ago
2
use current_app, and _app_ctx_stack
#45
maxcountryman
closed
10 years ago
0
`init_app` does not support multiple apps in the same process
#44
mattupstate
closed
10 years ago
11
Traceback on any route
#43
shuhaowu
closed
10 years ago
2
Typo
#42
djoume
closed
10 years ago
1
Look for CSRF token in the JSON data
#41
cybertoast
closed
10 years ago
4
read CSRF_DISABLE dynamically instead of caching on init
#40
xsleonard
closed
11 years ago
2
Fix for #38 using token from Flask's session
#39
alanhamlett
closed
11 years ago
1
Use token from Flask's session
#38
alanhamlett
closed
11 years ago
1
Configurable HTTPOnly and secure flag for cookie
#37
jpvanhal
closed
11 years ago
4
Token validation for GET requests
#36
FSX
closed
11 years ago
8
pythonhosted docs still refer to `flaskext` instead of `flask.ext`
#35
cvrebert
closed
11 years ago
2
Python 3.3 support
#34
FSX
closed
11 years ago
3
Don't check CSRF token for 404 not found requests
#33
alanhamlett
closed
11 years ago
1
Use view.__module__ and view.__name__ for exclude and include decorators
#32
alanhamlett
closed
11 years ago
1
Use view.__module__ and view.__name__ instead of view.__hash__ for exempt and include decorators
#31
alanhamlett
closed
11 years ago
0
Document testing?
#30
shuhaowu
closed
7 years ago
5
Remove Jinja2 dependency for better AJAX support
#29
zdexter
closed
11 years ago
10
Fixed exception in the case where _csrf_token is not available in Flask.g
#28
jgelens
closed
11 years ago
2
allow cross-domain ajax over https
#27
ryankshaw
closed
11 years ago
1
remove secret from hashed cookie value
#26
alanhamlett
closed
11 years ago
2
remove secret from hashed cookie value
#25
alanhamlett
closed
11 years ago
13
outdated docstring
#24
ThomasWaldmann
closed
11 years ago
0
docs/_build should not be in the repo
#23
ThomasWaldmann
closed
11 years ago
1
httponly cookie?
#22
ThomasWaldmann
closed
11 years ago
4
strange token generation code
#21
ThomasWaldmann
closed
11 years ago
5
wrong comparison, making it potentially pointless
#20
ThomasWaldmann
closed
11 years ago
10
referrer (spelling)
#19
ThomasWaldmann
closed
11 years ago
2
bug in docs for CSRF_DISABLE config name
#18
alanhamlett
closed
11 years ago
1
Prevent modifying the session unless necessary
#17
martynsmith
closed
12 years ago
2
Disable CSRF when a request has no cookies.
#16
anemitz
closed
11 years ago
4
New path
#15
gillestasse
closed
11 years ago
2
Fixed referer checking.
#14
jpvanhal
closed
12 years ago
1
Cleaned up whitespace and fixed PEP8 errors
#13
jpvanhal
closed
12 years ago
1
Fixed `exempt` and `include` decorators when using app factories.
#12
jpvanhal
closed
12 years ago
1
Fixed the setup script to refer to the correct module.
#11
jpvanhal
closed
12 years ago
1
Changed the docs to do the importing right
#10
alekzvik
closed
12 years ago
0
Add assertIn in other TestCases
#9
alekzvik
closed
12 years ago
1
Change structure
#8
alekzvik
closed
12 years ago
1
Adding the possibility to disable csrf-protection for all views by default and then opt in select views.
#7
klinkin
closed
12 years ago
1
CSRF compatibility with Flask-WTF
#6
jace
closed
12 years ago
3
Fixed broken link in docs
#5
alekzvik
closed
12 years ago
1
2.5 compatibility
#4
dplepage
closed
12 years ago
1
"Include" view decorator
#3
klinkin
closed
12 years ago
8
Python 2.6 and seasurf 0.1.11
#2
gillestasse
closed
12 years ago
1
X-CSRFToken header not found in the request.headers dict
#1
ericem
closed
12 years ago
2
Previous