diff options
| author | Chris McDonough <chrism@plope.com> | 2012-09-19 04:46:01 -0400 |
|---|---|---|
| committer | Chris McDonough <chrism@plope.com> | 2012-09-19 04:46:01 -0400 |
| commit | 643a83473a6faabd0ff08547a0cbca09e9cdda1c (patch) | |
| tree | 1825c27d957beff5509940215efbf97931dbe9af /docs/glossary.rst | |
| parent | c5680bbd7850c917ba1f1f68134ff4c8d3c37246 (diff) | |
| download | pyramid-643a83473a6faabd0ff08547a0cbca09e9cdda1c.tar.gz pyramid-643a83473a6faabd0ff08547a0cbca09e9cdda1c.tar.bz2 pyramid-643a83473a6faabd0ff08547a0cbca09e9cdda1c.zip | |
A ``check_csrf`` view predicate was added. For example, you can now do
``config.add_view(someview, check_csrf=True)``. When the predicate is
checked, if the ``csrf_token`` value in ``request.params`` matches the csrf
token in the request's session, the view will be permitted to execute.
Otherwise, it will not be permitted to execute.
Diffstat (limited to 'docs/glossary.rst')
| -rw-r--r-- | docs/glossary.rst | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/docs/glossary.rst b/docs/glossary.rst index 2b006da20..96dd826d1 100644 --- a/docs/glossary.rst +++ b/docs/glossary.rst @@ -818,9 +818,12 @@ Glossary application. session factory - A callable, which, when called with a single argument named - ``request`` (a :term:`request` object), returns a - :term:`session` object. + A callable, which, when called with a single argument named ``request`` + (a :term:`request` object), returns a :term:`session` object. See + :ref:`using_the_default_session_factory`, + :ref:`using_alternate_session_factories` and + :meth:`pyramid.config.Configurator.set_session_factory` for more + information. Mako `Mako <http://www.makotemplates.org/>`_ is a template language language |