I have question about the CSRF cookie age. The value defaults to one year. See https://docs.djangoproject.com/en/1.11/ref/settings/#csrf-cookie-age for explanations.
Not sure if, or how, we should change this. With my minimum knowledge about it, i would vote for using a session based cookie.
I have question about the CSRF cookie age. The value defaults to one year. See https:/ /docs.djangopro ject.com/ en/1.11/ ref/settings/ #csrf-cookie- age for explanations.
Not sure if, or how, we should change this. With my minimum knowledge about it, i would vote for using a session based cookie.