Add Django based CSRF protection to your Ember application.
This addon requires a meta tag named X-CSRFToken
provided within index.html
file. You can use Django Ember Index as a provider of the index.html
file.
ember install ember-django-csrf
The CSRF protection is enabled by default on every AJAX request with X-CSRFToken
header. You can specify an URL pattern in config/environment.js
to protect only a subset of requests.
var ENV = {
...
django: {
csrf: '^api'
}
};
Ember Django CSRF is available under the MIT license. See the LICENSE file for more info.