Releases · simonw/asgi-csrf · GitHub

15 Nov 01:04

simonw

0.11 Latest

Latest

Switched from setup.py to pyproject.toml #34
Fixed several deprecation warnings. #36, #37

Assets 2

15 Aug 03:24

simonw

0.10

Fix for intermittent mysterious error with some form submissions. #21
New options for customizing the cookie that is set: cookie_path, cookie_domain, cookie_secure, cookie_samesite. Thanks, Kevin Abraham. #25
Ability to customize the error page using the new send_csrf_failed argument. #28

Assets 2

23 Jun 19:35

simonw

0.9

New skip_if_scope= callback function mechanism to allow custom logic for skipping CSRF protection, based on the ASGI scope. See skip_if_scope documentation. #20

Assets 2

23 Jan 22:33

simonw

0.8

always_set_cookie=True option for if you want to set a missing CSRF token even on pages that do not display a hidden form field. #16

Assets 2

23 Jan 21:30

simonw

0.7.2

Fixed broken tests when running against latest httpx. #18

Assets 2

27 Aug 01:20

simonw

0.7.1

Fix for ASGI exception on non-http scopes. #15

Assets 2

15 Aug 18:04

simonw

0.7

Support for file upload support via multipart/form-data. #1
Test coverage is now 100%. #13

Assets 2

15 Aug 02:37

simonw

0.7a0 Pre-release

Pre-release

Alpha: support for multipart/form-data. #1

Assets 2

09 Aug 04:54

simonw

0.6.1

Now packaged as a sdist as well as a bdist_wheel

Assets 2

01 Jul 00:46

simonw

0.6

Requests with an Authorization: Bearer xxx header are no longer subject to CSRF checks. #11
Requests without cookies are no longer subject to CSRF checks unless the page path is explicitly listed in always_protect. #11

Assets 2