 | Django-session-csrf-cookie.Session-CSRF¿¡¼ ÀÛµ¿ÇÏ´Â Django ¹Ìµé¿þ¾î ¹× CSRF ÅäÅ« ÄíÅ°¸¦ º¸³À´Ï´Ù. |
| Áö±Ý ´Ù¿î·Îµå | |
Django-session-csrf-cookie. ¼øÀ§ ¹× ¿ä¾à
±¤°í
- ƯÇã:
- BSD License
- °¡°Ý:
- FREE
- °Ô½ÃÀÚ À̸§:
- Jody McIntyre
- °Ô½ÃÀÚ À¥»çÀÌÆ®:
- http://github.com/trustcentric/
Django-session-csrf-cookie. ű×
Django-session-csrf-cookie. ¼³¸í
Django-Session-CSRF-Cookie´Â Django-Session-CSRF¸¦ »ç¿ëÇÒ ¶§ CSRF ÅäÅ« ÄíÅ°¸¦ Á¦°øÇÏ´Â Django ¾ÛÀÔ´Ï´Ù. µðÀÚÀÎÀ¸·Î Django-Session-CSRF´Â CSRF ÅäÅ« ÄíÅ°°¡ ÇÊ¿äÇÏÁö ¾ÊÁö¸¸ ÇØ´ç ÄíÅ°´Â Ŭ¶óÀ̾ðÆ®°¡ HTMLÀ» ±¸¹® ºÐ¼®ÇÏÁö ¾Ê°í Ŭ¶óÀ̾ðÆ®°¡ CSRF ÅäÅ«À» °¡Á®¿Ã ¼ö Àֱ⠶§¹®¿¡ Ajax ¿äû ¹× ±âŸ À¥ API¿¡ À¯¿ëÇÕ´Ï´Ù. (ÄíÅ°´Â ¾î¶² ¸ñÀû À¸·Îµç ¼¹ö°¡ »ç¿ëÇÏÁö ¾ÊÀ¸¹Ç·Î Django-session-csrf°¡ ¼öÁ¤Çϵµ·Ï ¼³°èµÇ¾ú½À´Ï´Ù. : / //github.com/trustcentric/django-session-csrf-cookie.gitadd session_csrf_cookie.csrfcookiemiddleware session_csrf.csrfmiddleware middleware_classes¿¡ ´ëÇÑ middleware_classes : middleware_classes = (... 'session_csrf.csrfmiddleware', 'session_csrf_cookie.csrfcookiemiddleware', ... ) session_csrf_cookie¸¦ adminstal_apps.settingssession-csrf-cookie-middleware¸¦ ´ÙÀ½ ¼³Á¤À» »ç¿ëÇÏ¿© Á¦¾î ÇÒ ¼ö ÀÖ½À´Ï´Ù. csrf_cookie_name csrf ÅäÅ« ÄíÅ°¿¡ »ç¿ë µÈ À̸§ÀÔ´Ï´Ù. ±âº»°ª : csrftoken csrf_cookie_domain csrf ÄíÅ°¸¦ ¼³Á¤ÇÒ ¶§ »ç¿ëÇÒ µµ¸ÞÀÎ. ±âº»°ª : ¾øÀ½ CSRF_COOKIE_Secure CSRF ÄíÅ°¿¡ ´ëÇÑ º¸¾È ÄíÅ°¸¦ »ç¿ëÇÒÁö ¿©ºÎ. ±âº»°ª : false csrf_cookie_httponly csrf ÄíÅ°¿¡¼ httponly Ç÷¡±×¸¦ ¼³Á¤ÇÒÁö ¿©ºÎ. ±âº»°ª : falseProductÀÇ È¨ÆäÀÌÁö
Django-session-csrf-cookie. °ü·Ã ¼ÒÇÁÆ®¿þ¾î
