diff options
| author | 无闻 <joe2010xtmf@163.com> | 2014-09-02 12:30:44 -0400 |
|---|---|---|
| committer | 无闻 <joe2010xtmf@163.com> | 2014-09-02 12:30:44 -0400 |
| commit | f19fc230d43dfcdc1f04cf7fbf611650029892bb (patch) | |
| tree | 275b7b29894dcbc338b449678bec8668f044353e | |
| parent | 9ddd5454730b1639d5b2762391f6747a749371b7 (diff) | |
| parent | 9476e58de941624912a3ceb89d52d36e79c03358 (diff) | |
| download | gitea-f19fc230d43dfcdc1f04cf7fbf611650029892bb.tar.gz gitea-f19fc230d43dfcdc1f04cf7fbf611650029892bb.zip | |
Merge pull request #423 from m0sth8/fix-xcsrf-token
Set headers in js and go files to X-Csrf-Token
| -rw-r--r-- | cmd/web.go | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/cmd/web.go b/cmd/web.go index 2199d4ca1e..57164683ac 100644 --- a/cmd/web.go +++ b/cmd/web.go @@ -95,6 +95,7 @@ func newMacaron() *macaron.Macaron { m.Use(csrf.Generate(csrf.Options{ Secret: setting.SecretKey, SetCookie: true, + Header: "X-Csrf-Token", })) m.Use(toolbox.Toolboxer(m, toolbox.Options{ HealthCheckFuncs: []*toolbox.HealthCheckFuncDesc{ |