Source

ella / src / Ella / Processors / Security.hs

Author Commit Message Labels Comments Date
Luke Plant
Exemption for AJAX in CSRF checks
Luke Plant
Only send CSRF cookie when token is in outgoing response.
Luke Plant
Renamed csrfProtectView -> csrfViewProcessor
Luke Plant
Implemented and exported defaultCSRFRejectView
Luke Plant
Wrap CSRF hidden input in a div to make it better for inserting into <form>s
Luke Plant
Implemented function to generate hidden input with CSRF token
Luke Plant
Added tests for CSRF protection.
Luke Plant
Beginnings of CSRF protection system
Luke Plant
Moved signedCookiesProcessor into Ella.Processors.Security