Merge pull request #850 from RS71/develop

CSRF optional token regeneration
author: Phil Sturgeon <email@philsturgeon.co.uk> 2012-01-08 04:02:46 +0100
committer: Phil Sturgeon <email@philsturgeon.co.uk> 2012-01-08 04:02:46 +0100
commit: 352d60e9f3a65def29e02a4507ef742eac255333 (patch)
tree: 5b312692feeb7b55fdc0a0857b01c9549c214e34 /user_guide_src/source/changelog.rst
parent: 306e83a98127ef57cc020d183a184f7fd95df96e (diff)
parent: 0fc6409cae13c6be6749e1f160a144fc90713f8b (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/user_guide_src/source/changelog.rst b/user_guide_src/source/changelog.rst
index 7e7be0689..d9eca7fef 100644
--- a/user_guide_src/source/changelog.rst
+++ b/user_guide_src/source/changelog.rst
@@ -65,6 +65,8 @@ Release Date: Not Released
 	    if they are set manually after initialization.
    -  Minor speed optimizations and method & property visibility declarations in the Calendar Library.
    -  Removed SHA1 function in the :doc:`Encryption Library <libraries/encryption>`.
+   -  Added $config['csrf_regeneration'] to the CSRF protection in the :doc:`Security library <libraries/security>`, which makes token regeneration optional.
+
 
 -  Core
author	Phil Sturgeon <email@philsturgeon.co.uk>	2012-01-08 04:02:46 +0100
committer	Phil Sturgeon <email@philsturgeon.co.uk>	2012-01-08 04:02:46 +0100
commit	352d60e9f3a65def29e02a4507ef742eac255333 (patch)
tree	5b312692feeb7b55fdc0a0857b01c9549c214e34 /user_guide_src/source/changelog.rst
parent	306e83a98127ef57cc020d183a184f7fd95df96e (diff)
parent	0fc6409cae13c6be6749e1f160a144fc90713f8b (diff)