graphql-python/graphene-django
1
1
Fork 0
mirror of https://github.com/graphql-python/graphene-django.git synced 2025-05-28 18:23:07 +03:00
Code Issues Packages Projects Releases Wiki Activity
657 Commits 6 Branches 54 Tags 4.4 MiB
e33523e992
Commit Graph

4 Commits

Author SHA1 Message Date
James
e33523e992
Use var instead of let, add var for value 2019-09-24 09:18:35 -05:00
James
6c8d4a386b
The current csrftoken parser breaks on multiple crsftokens 
For example: 

`Cookie: csrftoken=asdfasd; sessionid=asdfasdf; csrftoken=qwertyqwerty`

This can happen when multiple sessions, or multiple csrftokens for different paths.
 2019-09-23 20:17:32 -05:00
Dan Palmer
2b08e59bea
Revert to default query execution behaviour 
The only security risk here is persuading a user to execute a mutation,
which is probably not a big risk. To mitigate this risk and still keep
the same UX (that is so valuable), would require more work than is
proportionate for this PR.
 2018-09-09 21:44:30 +01:00
Dan Palmer
e50e12bc9f
Move GraphiQL's JS into a separate file for ease of CSP 2018-08-30 20:36:26 +01:00