Corrected factual error regarding logging in the CSRF docs
git-svn-id: http://code.djangoproject.com/svn/django/trunk@16047 bcc190cf-cafb-0310-a4f2-bffc1f526a37
This commit is contained in:
parent
4175e3d104
commit
96520e87bd
|
@ -170,10 +170,10 @@ usually only be seen when there is a genuine Cross Site Request Forgery, or
|
||||||
when, due to a programming error, the CSRF token has not been included with a
|
when, due to a programming error, the CSRF token has not been included with a
|
||||||
POST form.
|
POST form.
|
||||||
|
|
||||||
No logging is done, and the error message is not very friendly, so you may want
|
The error page, however, is not very friendly, so you may want to provide your
|
||||||
to provide your own page for handling this condition. To do this, simply set
|
own view for handling this condition. To do this, simply set the
|
||||||
the :setting:`CSRF_FAILURE_VIEW` setting to a dotted path to your own view
|
:setting:`CSRF_FAILURE_VIEW` setting to a dotted path to your own view function,
|
||||||
function, which should have the following signature::
|
which should have the following signature::
|
||||||
|
|
||||||
def csrf_failure(request, reason="")
|
def csrf_failure(request, reason="")
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue