Merge remote-tracking branch 'Pylons/master'

author: Jeremy Chen <jeremy886@gmail.com> 2017-04-15 19:14:09 +1000
committer: Jeremy Chen <jeremy886@gmail.com> 2017-04-15 19:14:09 +1000
commit: bcde632349de081880ce4fe49982defb832a030c (patch)
tree: 5fa7e97bc0cafeae074bf942af12bd5a316d3dcc /docs/whatsnew-1.8.rst
parent: 1bd681193feef31d032c13e7022bc2d65d9e0a21 (diff)
parent: 2078f2cf5188491581cf1c362a583af2b2cbc2fe (diff)
download: pyramid-bcde632349de081880ce4fe49982defb832a030c.tar.gz
pyramid-bcde632349de081880ce4fe49982defb832a030c.tar.bz2
pyramid-bcde632349de081880ce4fe49982defb832a030c.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/docs/whatsnew-1.8.rst b/docs/whatsnew-1.8.rst
index adc60b34b..ff16c1a4b 100644
--- a/docs/whatsnew-1.8.rst
+++ b/docs/whatsnew-1.8.rst
@@ -114,6 +114,13 @@ Minor Feature Additions
   later calls to place translation directories at a higher priority then
   earlier calls. See https://github.com/Pylons/pyramid/pull/2902
 
+- Added a new ``callback`` option to
+  :meth:`pyramid.config.Configurator.set_default_csrf_options`` which
+  can be used to determine per-request whether CSRF checking should be enabled
+  to allow for a mix authentication methods. Only cookie-based methods
+  generally require CSRF checking.
+  See https://github.com/Pylons/pyramid/pull/2778
+
 Backwards Incompatibilities
 ---------------------------
author	Jeremy Chen <jeremy886@gmail.com>	2017-04-15 19:14:09 +1000
committer	Jeremy Chen <jeremy886@gmail.com>	2017-04-15 19:14:09 +1000
commit	bcde632349de081880ce4fe49982defb832a030c (patch)
tree	5fa7e97bc0cafeae074bf942af12bd5a316d3dcc /docs/whatsnew-1.8.rst
parent	1bd681193feef31d032c13e7022bc2d65d9e0a21 (diff)
parent	2078f2cf5188491581cf1c362a583af2b2cbc2fe (diff)
download	pyramid-bcde632349de081880ce4fe49982defb832a030c.tar.gz pyramid-bcde632349de081880ce4fe49982defb832a030c.tar.bz2 pyramid-bcde632349de081880ce4fe49982defb832a030c.zip