forward port some history changes from 1.8-branch

author: Michael Merickel <michael@merickel.org> 2017-04-12 22:37:56 -0500
committer: Michael Merickel <michael@merickel.org> 2017-04-12 22:37:56 -0500
commit: 66585f47e2ccd36be6a3cd5679ccf60161d9db05 (patch)
tree: c43b30576857304e0ef30ca80f4b302e3655ade2 /docs/whatsnew-1.8.rst
parent: 8597552cbf9b49366c7d2a27c123d140877a1bab (diff)
download: pyramid-66585f47e2ccd36be6a3cd5679ccf60161d9db05.tar.gz
pyramid-66585f47e2ccd36be6a3cd5679ccf60161d9db05.tar.bz2
pyramid-66585f47e2ccd36be6a3cd5679ccf60161d9db05.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/docs/whatsnew-1.8.rst b/docs/whatsnew-1.8.rst
index adc60b34b..ff16c1a4b 100644
--- a/docs/whatsnew-1.8.rst
+++ b/docs/whatsnew-1.8.rst
@@ -114,6 +114,13 @@ Minor Feature Additions
   later calls to place translation directories at a higher priority then
   earlier calls. See https://github.com/Pylons/pyramid/pull/2902
 
+- Added a new ``callback`` option to
+  :meth:`pyramid.config.Configurator.set_default_csrf_options`` which
+  can be used to determine per-request whether CSRF checking should be enabled
+  to allow for a mix authentication methods. Only cookie-based methods
+  generally require CSRF checking.
+  See https://github.com/Pylons/pyramid/pull/2778
+
 Backwards Incompatibilities
 ---------------------------
author	Michael Merickel <michael@merickel.org>	2017-04-12 22:37:56 -0500
committer	Michael Merickel <michael@merickel.org>	2017-04-12 22:37:56 -0500
commit	66585f47e2ccd36be6a3cd5679ccf60161d9db05 (patch)
tree	c43b30576857304e0ef30ca80f4b302e3655ade2 /docs/whatsnew-1.8.rst
parent	8597552cbf9b49366c7d2a27c123d140877a1bab (diff)
download	pyramid-66585f47e2ccd36be6a3cd5679ccf60161d9db05.tar.gz pyramid-66585f47e2ccd36be6a3cd5679ccf60161d9db05.tar.bz2 pyramid-66585f47e2ccd36be6a3cd5679ccf60161d9db05.zip