Is there a way to completely disable CSRF handling? Is there an documentation about how to create web services APIs using Django without frontends?
Thanks. On Jan 19, 3:26 pm, Andy McKay <a...@clearwind.ca> wrote: > > What if I wanna expose my views as web services without providing a > > UI, how do I make sure clients (e.g. Ajax, actionscript, etc) can use > > it without this CSRF issue? > > You can mark things as exempt if you'd like to and are aware of the > implications: > > http://docs.djangoproject.com/en/dev/ref/contrib/csrf/#exceptions > -- > Andy McKay > a...@clearwind.ca > twitter: @andymckay -- You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com. To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
