[Zope-dev] CSRF protection for z3c.form

Wichert Akkerman wichert at wiggy.net
Mon Apr 4 12:23:45 EDT 2011


On 2011-4-4 18:22, Roger wrote:
> Hi Laurence, Stephan
>
> Just because you can write login forms with
> z3c.form this package has nothing to do with
> authentication. That's just a form framework!
>
> Authentication is defently not a part
> of our z3c.form framework and should not
> become one.
>
> Why do you think authentication has something
> to do with the z3c.form library? Did I miss
> something?

CSRF has nothing to do with authentication. It has to do with securing 
forms on websites.

Wichert.

-- 
Wichert Akkerman <wichert at wiggy.net>   It is simple to make things.
http://www.wiggy.net/                  It is hard to make things simple.


More information about the Zope-Dev mailing list