Files @ 9c2fc1390291
Branch filter:

Location: kallithea/tox.ini - annotation

9c2fc1390291 238 B text/x-ini Show Source Show as Raw Download as Raw
Mads Kiilerich
tests: prepare for adding CSRF protection on login forms

CSRF is about avoiding abuse of credentials by doing things in existing
sessions. The login form does not have any previous credentials, so there is
nothing to abuse and no real need for CSRF protection. But there is still an
unauth session, so we *can* have CSRF protection.

CSRF protection is currently in LoginRequired (which obviously isn't
applied to the login form), but let's prepare for changing that.
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
2481c0a1ed31
768989c595aa
6a83b399bb3c
2481c0a1ed31
2481c0a1ed31
9c5e6984bd0e
9c5e6984bd0e
46662961d58d
dd676fdeda0f
dd676fdeda0f
b2195895bbd7
b2195895bbd7
46662961d58d
46662961d58d

[tox]
minversion = 1.8
envlist = py{26,27}-pytest

[testenv]
setenv =
    PYTHONHASHSEED = 0
deps =
    -r{toxinidir}/dev_requirements.txt
    py26-pytest: unittest2
    python-ldap
    python-pam
commands =
    pytest: py.test {posargs}
This site is powered by Kallithea 0.7.0, which is © 2010–2025 by various authors & licensed under GPLv3.