From 285b464fb8cb972af6bbdd7cf62b46e75c128a64 Mon Sep 17 00:00:00 2001
From: Luke Plant <L.Plant.98@cantab.net>
Date: Mon, 9 May 2011 23:56:04 +0000
Subject: [PATCH] [1.2.X] Updated AJAX example code in CSRF docs to be
 consistent regarding what are safe HTTP methods

Backport of [16202] from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16204 bcc190cf-cafb-0310-a4f2-bffc1f526a37
---
 docs/ref/contrib/csrf.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/ref/contrib/csrf.txt b/docs/ref/contrib/csrf.txt
index 7ef1207d65..a7dbd019fe 100644
--- a/docs/ref/contrib/csrf.txt
+++ b/docs/ref/contrib/csrf.txt
@@ -125,7 +125,7 @@ that allow headers to be set on every request. In jQuery, you can use the
                 !(/^(\/\/|http:|https:).*/.test(url));
         }
         function safeMethod(method) {
-            return (method === 'GET' || method === 'HEAD');
+            return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method));
         }
 
         if (!safeMethod(settings.type) && sameOrigin(settings.url)) {