Closed mattford63 closed 3 years ago
Actually I don't think CSRF is mandatory, you can pass :csrf-token-fn nil
in the make-channel-socket!
options on the server side and it will skip the checks. I don't think that is documented though, I had to dig through the source to find it.
Merging manually, thanks Matt!
CSRF is now mandatory - it took me a whilst to find this out from the official example. This is quick pass at updating the readme to reflect this.