qiita-spots / qiita

Qiita - A multi-omics databasing effort
https://qiita.ucsd.edu/
BSD 3-Clause "New" or "Revised" License
121 stars 80 forks source link

xsrf_form_html #507

Open wasade opened 10 years ago

wasade commented 10 years ago

Any reason to not use xsrf_form_html? I believe we're not using Tornado's native XSRF protection at this time. Need to add "xsrf_cookies": True, into settings. More details here

antgonza commented 9 years ago

This issue is related to: https://github.com/biocore/qiita/issues/719

antgonza commented 7 years ago

If we actually implement this we need to change all our post forms, which might be tricky as we will need to test that everything works as expected.

Also, I'm gonna close https://github.com/biocore/qiita/issues/719, because I think they are basically addressing the same issue but here we have links to the actual solution.