Skip to content

SeaSurf is a Flask extension for preventing cross-site request forgery (CSRF).

License

Notifications You must be signed in to change notification settings

alekzvik/flask-seasurf

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

31 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

#Flask-SeaSurf

build status

SeaSurf is a Flask extension for preventing cross-site request forgery (CSRF).

CSRF vulnerabilities have been found in large and popular sites such as YouTube. These attacks are problematic because the mechanism they use is relatively easy to exploit. This extension attempts to aid you in securing your application from such attacks.

This extension is based on the excellent Django middleware.

##Installation

Install the extension with one of the following commands:

$ easy_install flask-seasurf

or alternatively if you have pip installed:

$ pip install flask-seasurf

##Usage

Using SeaSurf is fairly straightforward. Begin by importing the extension and then passing your application object back to the extension, like this:

from flask.ext.seasurf import SeaSurf
csrf = SeaSurf(app)

##Documentation

The Sphinx-compiled documentation is available here: http://packages.python.org/Flask-SeaSurf/

About

SeaSurf is a Flask extension for preventing cross-site request forgery (CSRF).

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages

  • JavaScript 54.9%
  • Python 45.1%