[1.2.X] Updated AJAX example code in CSRF docs to be consistent regarding what are safe HTTP methods

Backport of [16202] from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16204 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-05-09 23:56:04 +00:00 · 2011-05-09 23:56:04 +00:00 · 285b464fb8
commit 285b464fb8
parent cfc1756ef5
1 changed files with 1 additions and 1 deletions
--- a/docs/ref/contrib/csrf.txt
+++ b/docs/ref/contrib/csrf.txt
@ -125,7 +125,7 @@ that allow headers to be set on every request. In jQuery, you can use the
                !(/^(\/\/|http:|https:).*/.test(url));
        }
        function safeMethod(method) {
-            return (method === 'GET' || method === 'HEAD');
+            return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method));
        }

        if (!safeMethod(settings.type) && sameOrigin(settings.url)) {