Fixed #6247 -- Added CsrfMiddleware to docs/middleware.txt. Thanks, Uninen

git-svn-id: http://code.djangoproject.com/svn/django/trunk@6984 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2008-01-02 05:13:46 +00:00 · 2008-01-02 05:13:46 +00:00 · aa728422bc
parent 8bb07998ca
commit aa728422bc
1 changed files with 11 additions and 0 deletions
--- a/docs/middleware.txt
+++ b/docs/middleware.txt
@ -154,6 +154,17 @@ every incoming ``HttpRequest`` object. See `Authentication in Web requests`_.

 .. _Authentication in Web requests: ../authentication/#authentication-in-web-requests

+django.contrib.csrf.middleware.CsrfMiddleware
+---------------------------------------------
+
+**New in Django development version**
+
+Adds protection against Cross Site Request Forgeries by adding hidden form
+fields to POST forms and checking requests for the correct value. See the
+`Cross Site Request Forgery protection documentation`_.
+
+.. _`Cross Site Request Forgery protection documentation`: ../csrf/
+
 django.middleware.transaction.TransactionMiddleware
 ---------------------------------------------------