Merge branch 'master' into pr/2854

author: Michael Merickel <michael@merickel.org> 2017-04-30 02:02:26 -0500
committer: Michael Merickel <michael@merickel.org> 2017-04-30 02:02:26 -0500
commit: 9c15a8eac2848cc7a81f174ecf7a6c63be323f51 (patch)
tree: abf20accdb77f6127a5480bf023231c7b0b6706b /HISTORY.txt
parent: 3f14d63c009ae7f101b7aeb4525bab2dfe66fa11 (diff)
parent: 87af11c5e33b8c03d57a8b571f0b152efe866af1 (diff)
download: pyramid-9c15a8eac2848cc7a81f174ecf7a6c63be323f51.tar.gz
pyramid-9c15a8eac2848cc7a81f174ecf7a6c63be323f51.tar.bz2
pyramid-9c15a8eac2848cc7a81f174ecf7a6c63be323f51.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/HISTORY.txt b/HISTORY.txt
index c10747af4..c69d9514e 100644
--- a/HISTORY.txt
+++ b/HISTORY.txt
@@ -198,6 +198,12 @@ Features
 
   See https://github.com/Pylons/pyramid/pull/2873
 
+- Added a new ``callback`` option to ``config.set_default_csrf_options`` which
+  can be used to determine per-request whether CSRF checking should be enabled
+  to allow for a mix authentication methods. Only cookie-based methods
+  generally require CSRF checking.
+  See https://github.com/Pylons/pyramid/pull/2778
+
 Bug Fixes
 ---------
author	Michael Merickel <michael@merickel.org>	2017-04-30 02:02:26 -0500
committer	Michael Merickel <michael@merickel.org>	2017-04-30 02:02:26 -0500
commit	9c15a8eac2848cc7a81f174ecf7a6c63be323f51 (patch)
tree	abf20accdb77f6127a5480bf023231c7b0b6706b /HISTORY.txt
parent	3f14d63c009ae7f101b7aeb4525bab2dfe66fa11 (diff)
parent	87af11c5e33b8c03d57a8b571f0b152efe866af1 (diff)
download	pyramid-9c15a8eac2848cc7a81f174ecf7a6c63be323f51.tar.gz pyramid-9c15a8eac2848cc7a81f174ecf7a6c63be323f51.tar.bz2 pyramid-9c15a8eac2848cc7a81f174ecf7a6c63be323f51.zip