2ec52eb3d8e187f5e9dfcaf8ab0dff55e40cd647 - couchdb-couch-mrview

commit	2ec52eb3d8e187f5e9dfcaf8ab0dff55e40cd647	[log] [tgz]
author	Mayya Sharipova <mayyas@ca.ibm.com>	Wed Sep 02 16:14:51 2015 -0400
committer	Alexander Shorin <kxepal@apache.org>	Sun Oct 18 03:17:18 2015 +0300
tree	798f73d6ebc53976ad30360d1b5e1cd591b982d9
parent	f089832ea7f759b4e655051025cc48522fee9e1b [diff]

Check POST requests for valid json header

validate that all POST requests with json body must have also have valid
json header: {"Content-Type": "application/json"}
This ensures a basic protection against CSRF

This closes #25

JIRA: COUCHDB-2775

Signed-off-by: Alexander Shorin <kxepal@apache.org>

src/couch_mrview_http.erl[diff]
src/couch_mrview_show.erl[diff]

2 files changed

tree: 798f73d6ebc53976ad30360d1b5e1cd591b982d9

include/
priv/
src/
test/
.travis.yml
LICENSE