[1.3.X] Added a note about the AJAX CSRF example not working on jQuery 1.5

Backport of [16543] from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16544 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-14 19:40:30 +00:00 · 2011-07-14 19:40:30 +00:00 · 2a1874521e
parent a925b3780e
commit 2a1874521e
1 changed files with 5 additions and 0 deletions
--- a/docs/ref/contrib/csrf.txt
+++ b/docs/ref/contrib/csrf.txt
@ -133,6 +133,11 @@ that allow headers to be set on every request. In jQuery, you can use the
        }
    });

+.. note::
+
+    Due to a bug introduced in jQuery 1.5, the example above will not work
+    correctly on that version. Make sure you are running at least jQuery 1.5.1.
+
 Adding this to a javascript file that is included on your site will ensure that
 AJAX POST requests that are made via jQuery will not be caught by the CSRF
 protection.