arno/isso
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
b839b2be31
isso/isso
History
Martin Zimmermann b839b2be31 HTTP Origin is only sent on cross-origin requests in Firefox 
Therefore, only raise Forbidden if Origin (or Referer for MSIE) is sent
(which is a protected header and all modern browsers (except IE)).

Also add a basic unit test which asserts the failure for false origins.
2013-12-04 17:09:22 +01:00
..
css
db remove unnecessary imports 2013-11-17 15:49:25 +01:00
ext show traceback when smtp connection failed 2013-11-25 17:02:04 +01:00
js use el.getAttribute instead of el.dataset to support IE10 m( 2013-12-02 12:14:26 +01:00
utils
views HTTP Origin is only sent on cross-origin requests in Firefox 2013-12-04 17:09:22 +01:00
__init__.py add application object into ns only when using uwsgi and gunicorn 2013-11-29 14:22:21 +01:00
compat.py
core.py support for gunicorn (and other pre-forking wsgi servers) 2013-11-25 13:51:11 +01:00
migrate.py
wsgi.py move SocketHTTPServer to isso/wsgi.py 2013-11-17 11:57:41 +01:00