Commit6188298

micheal

authored and

committed

Update csrf_in_login_form.rst

We want to protect against CSRF, not allow it. :)

1 parent1adfd9b commit6188298Copy full SHA for 6188298

File tree

-6

lines changed

-6

lines changed

Lines changed: 6 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,8 +1,8 @@`
`1`	`1`	`..index::`
`2`		`- single: Security; CSRF in the Login Form`
	`2`	`+ single: Security; CSRFProtectionin the Login Form`
`3`	`3`
`4`		`-Using CSRF in the Login Form`
`5`		`-============================`
	`4`	`+Using CSRFProtectionin the Login Form`
	`5`	`+=======================================`
`6`	`6`
`7`	`7`	`When using a login form, you should make sure that you are protected against CSRF`
`8`	`8`	(`Cross-site request forgery`_). The Security component already has built-in support
`@@ -13,11 +13,11 @@ for CSRF. In this article you'll learn how you can use it in your login form.`
`13`	`13`	Login CSRF attacks are a bit less well-known. See `Forging Login Requests`_
`14`	`14`	`if you're curious about more details.`
`15`	`15`
`16`		`-Configuring CSRF`
`17`		`-----------------`
	`16`	`+Configuring CSRF Protection`
	`17`	`+---------------------------`
`18`	`18`
`19`	`19`	`First, configure the Security component so it can use CSRF protection.`
`20`		`-The Security component needs a CSRF provider. You can set this to use the default`
	`20`	`+The Security component needs a CSRFtokenprovider. You can set this to use the default`
`21`	`21`	`provider available in the Form component:`
`22`	`22`
`23`	`23`	`..configuration-block::`

Comments

(0)