#4769 - Disable static cache when a POST form token is present
-
By Chris Graham
- Added
- 6 views
| Identifier | #4769 |
|---|---|
| Issue type | Major issue (breaks an entire feature) |
| Title | Disable static cache when a POST form token is present |
| Status | Completed |
| Handling member | Chris Graham |
| Version | 10.0.39 |
| Addon | core |
| Description | We must never static cache a page for guest users that has a POST form that uses a CSRF token. This will cause the POST form to fail. You can workaround it be excluding those pages, but that's too much work, and too prone to be forgotten. |
| Steps to reproduce | |
| Funded? | No |
| Commits |
The system will post a comment when this issue is modified (e.g., status changes). To be notified of this, click "Enable comment notifications".
Comments
There have been no comments yet