From aa728422bc2b9fe81e89c421d2199ba01eacf8b1 Mon Sep 17 00:00:00 2001
From: Adrian Holovaty <adrian@holovaty.com>
Date: Wed, 2 Jan 2008 05:13:46 +0000
Subject: [PATCH] Fixed #6247 -- Added CsrfMiddleware to docs/middleware.txt.
 Thanks, Uninen

git-svn-id: http://code.djangoproject.com/svn/django/trunk@6984 bcc190cf-cafb-0310-a4f2-bffc1f526a37
---
 docs/middleware.txt | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/docs/middleware.txt b/docs/middleware.txt
index f2cf18dbdf..a2853e2965 100644
--- a/docs/middleware.txt
+++ b/docs/middleware.txt
@@ -154,6 +154,17 @@ every incoming ``HttpRequest`` object. See `Authentication in Web requests`_.
 
 .. _Authentication in Web requests: ../authentication/#authentication-in-web-requests
 
+django.contrib.csrf.middleware.CsrfMiddleware
+---------------------------------------------
+
+**New in Django development version**
+
+Adds protection against Cross Site Request Forgeries by adding hidden form
+fields to POST forms and checking requests for the correct value. See the
+`Cross Site Request Forgery protection documentation`_.
+
+.. _`Cross Site Request Forgery protection documentation`: ../csrf/
+
 django.middleware.transaction.TransactionMiddleware
 ---------------------------------------------------