We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
If i @csrf.exempt a view which uses a FlaskForm, the csrf token is still required by the Form. I manually have to set g.csrf_valid = True.
g.csrf_valid = True
Maybe csrf_protect should set g.csrf_valid if the blueprint or view was exempted. Or another flag is introduced like g.exempt.
csrf_protect
g.csrf_valid
g.exempt
Do you like a pull request for one of the options?
The text was updated successfully, but these errors were encountered:
No branches or pull requests
If i @csrf.exempt a view which uses a FlaskForm, the csrf token is still required by the Form. I manually have to set
g.csrf_valid = True
.Maybe
csrf_protect
should setg.csrf_valid
if the blueprint or view was exempted. Or another flag is introduced likeg.exempt
.Do you like a pull request for one of the options?
The text was updated successfully, but these errors were encountered: