{ "info": { "author": "Jody McIntyre", "author_email": "jodym@trustcentric.com", "bugtrack_url": null, "classifiers": [ "Development Status :: 4 - Beta", "Environment :: Web Environment", "Environment :: Web Environment :: Mozilla", "Framework :: Django", "Intended Audience :: Developers", "License :: OSI Approved :: BSD License", "Operating System :: OS Independent", "Programming Language :: Python", "Topic :: Software Development :: Libraries :: Python Modules" ], "description": "What is this?\n-------------\n\n``django-session-csrf-cookie`` is Django middleware that provides a\nCSRF token cookie when using `django-session-csrf\n`_. By design,\ndjango-session-csrf does not require a CSRF token cookie, but such a\ncookie is useful for AJAX requests and other web APIs, since it allows\nthe client to get the CSRF token without parsing HTML. (Note that the\ncookie is not used by the server for any purpose, so the security hole\ndjango-session-csrf was designed to fix is still fixed.) \n\n\n\nInstallation\n------------\n\nFrom PyPI::\n\n pip install django-session-csrf-cookie\n\nFrom github::\n\n git clone git://github.com/trustcentric/django-session-csrf-cookie.git\n\nAdd ``session_csrf_cookie.CsrfCookieMiddleware`` to your ``MIDDLEWARE_CLASSES``\nbelow ``session_csrf.CsrfMiddleware``::\n\n MIDDLEWARE_CLASSES = (\n ...\n 'session_csrf.CsrfMiddleware',\n 'session_csrf_cookie.CsrfCookieMiddleware',\n ...\n )\n\nAdd ``session_csrf_cookie`` to ``INSTALLED_APPS``.\n\n\nSettings\n--------\n\n``session-csrf-cookie-middleware`` can be controlled using the\nfollowing settings:\n\n ``CSRF_COOKIE_NAME``\n The name used for the CSRF token cookie.\n\n Default: ``csrftoken``\n\n ``CSRF_COOKIE_DOMAIN``\n The domain to be used when setting the CSRF cookie.\n\n Default: None\n\n ``CSRF_COOKIE_SECURE``\n Whether to use a secure cookie for the CSRF cookie.\n\n Default: False\n\n ``CSRF_COOKIE_HTTPONLY``\n Whether to set the HTTPOnly flag on the CSRF cookie.\n\n Default: False", "description_content_type": null, "docs_url": null, "download_url": "UNKNOWN", "downloads": { "last_day": -1, "last_month": -1, "last_week": -1 }, "home_page": "http://github.com/trustcentric/django-session-csrf-cookie", "keywords": null, "license": "BSD", "maintainer": null, "maintainer_email": null, "name": "django-session-csrf-cookie", "package_url": "https://pypi.org/project/django-session-csrf-cookie/", "platform": "UNKNOWN", "project_url": "https://pypi.org/project/django-session-csrf-cookie/", "project_urls": { "Download": "UNKNOWN", "Homepage": "http://github.com/trustcentric/django-session-csrf-cookie" }, "release_url": "https://pypi.org/project/django-session-csrf-cookie/0.1/", "requires_dist": null, "requires_python": null, "summary": "Django middleware that works with session-csrf and sends a CSRF token cookie.", "version": "0.1" }, "last_serial": 752961, "releases": { "0.1": [ { "comment_text": "", "digests": { "md5": "e93fbba1f289324796f7b46c3b9834a6", "sha256": "f83ebaf10932e00a0fe618f5aa046c233b1753c403b95b061cbc45de9061fec0" }, "downloads": -1, "filename": "django-session-csrf-cookie-0.1.tar.gz", "has_sig": false, "md5_digest": "e93fbba1f289324796f7b46c3b9834a6", "packagetype": "sdist", "python_version": "source", "requires_python": null, "size": 3712, "upload_time": "2012-08-15T22:57:12", "url": "https://files.pythonhosted.org/packages/16/2f/a87af7a96c8856873b52bac32e757a9918d7114c4c4287efa688ca82f585/django-session-csrf-cookie-0.1.tar.gz" } ] }, "urls": [ { "comment_text": "", "digests": { "md5": "e93fbba1f289324796f7b46c3b9834a6", "sha256": "f83ebaf10932e00a0fe618f5aa046c233b1753c403b95b061cbc45de9061fec0" }, "downloads": -1, "filename": "django-session-csrf-cookie-0.1.tar.gz", "has_sig": false, "md5_digest": "e93fbba1f289324796f7b46c3b9834a6", "packagetype": "sdist", "python_version": "source", "requires_python": null, "size": 3712, "upload_time": "2012-08-15T22:57:12", "url": "https://files.pythonhosted.org/packages/16/2f/a87af7a96c8856873b52bac32e757a9918d7114c4c4287efa688ca82f585/django-session-csrf-cookie-0.1.tar.gz" } ] }