update docs regarding coreapi with session-CSRF

This commit is contained in:
jeffrey k eliasen 2018-09-22 15:24:28 -10:00
parent b98d9ef0f6
commit cee6823ec0

View File

@ -428,6 +428,9 @@ the user to login, and then instantiate a client using session authentication:
The authentication scheme will handle including a CSRF header in any outgoing
requests for unsafe HTTP methods.
** Note: ** This mechanism does not work when used in conjunction with
`CSRF_USE_SESSIONS = True` in your Django settings.
#### Token authentication
The `TokenAuthentication` class can be used to support REST framework's built-in