Disable form post by default #1139

Shane32 · 2024-08-04T05:07:33Z

Form post requests are not recommended, mostly due to CSRF concerns. Also the draft GraphQL-over-HTTP specification does not define the format of such a request. Since v7 we have stated that form post requests would be disabled by default in future versions. This PR disables form post requests by default.

Shane32 added 2 commits August 4, 2024 01:02

Disable form-post by default

d8506d5

Update migration document

8dcb107

Shane32 added this to the 8.0 milestone Aug 4, 2024

Shane32 self-assigned this Aug 4, 2024

Update readme

ee2b169

Shane32 requested a review from gao-artur August 4, 2024 05:10

Shane32 linked an issue Aug 4, 2024 that may be closed by this pull request

Disable ReadFormOnPost by default #1085

Closed

gao-artur approved these changes Aug 4, 2024

View reviewed changes

Shane32 merged commit c48d21a into develop Aug 4, 2024

Shane32 deleted the disable_form_post branch August 4, 2024 05:22

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Disable form post by default #1139

Disable form post by default #1139

Uh oh!

Shane32 commented Aug 4, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Disable form post by default #1139

Disable form post by default #1139

Uh oh!

Conversation

Shane32 commented Aug 4, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants