encode/django-rest-framework
1
1
Fork 0
mirror of https://github.com/encode/django-rest-framework.git synced 2025-11-02 08:57:43 +03:00
Code Issues Packages Projects Releases Wiki Activity
6ec6ddea9b
django-rest-framework/rest_framework/static/rest_framework/js
History
Luka Jeran 6ec6ddea9b
Avoid inline script execution for injecting CSRF token (#7016) 
Scripts with type="application/json" or "text/plain" are not executed, so we can
use them to inject dynamic CSRF data, without allowing inline-script execution
in Content-Security-Policy.
2022-11-29 16:10:32 +00:00
..
ajax-form.js Fix regex typo allowing '[' in boundary string 2017-06-16 21:53:06 +10:00
bootstrap.min.js Update bootstrap to 3.4.1 (#6923) 2019-11-11 16:41:10 -05:00
coreapi-0.1.1.js Update coreapi JS to 0.1.1 (#5479) 2017-10-05 13:40:28 +02:00
csrf.js Avoid inline script execution for injecting CSRF token (#7016) 2022-11-29 16:10:32 +00:00
default.js fix e.indexOf is not a function error (#5982) 2018-05-11 21:49:29 +01:00
jquery-3.5.1.min.js jquery 3.5.1 (#7313) 2020-05-11 13:08:40 +01:00
prettify-min.js Change package name: djangorestframework -> rest_framework 2012-09-20 13:06:27 +01:00