Skip to content

Add CSRF protection

Created by Alex on April 18, 2016. Copied from redmine (https://bugs.ligo.org/redmine/issues/4038)

There has been interest expressed in implementing cross-site request forgery (CSRF) protection on GraceDB:

https://docs.djangoproject.com/ja/1.9/ref/csrf/

This isn't a bug or an urgent feature request; I'm just documenting this for later.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information