Mercurial > p > roundup > code

diff roundup/configuration.py @ 8042:9ba60ddafd2a

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
fix: remove duplicate config option. Had the same config setting twice in the structure.
author John Rouillard <rouilj@ieee.org>
date Tue, 25 Jun 2024 12:06:06 -0400
parents 791b61ed11c9
children 69629a4f7262
line wrap: on
line diff
--- a/roundup/configuration.py	Wed Jun 19 00:23:51 2024 -0400
+++ b/roundup/configuration.py	Tue Jun 25 12:06:06 2024 -0400
@@ -1331,18 +1331,6 @@
             """csrf_tokens have a limited lifetime. If they are not
 used they are purged from the database after this
 number of minutes. Default (20160) is 2 weeks."""),
-        (CsrfSettingOption, 'csrf_enforce_token', "yes",
-            """How do we deal with @csrf fields in posted forms.
-Set this to 'required' to block the post and notify
-    the user if the field is missing or invalid.
-Set this to 'yes' to block the post and notify the user
-    if the token is invalid, but accept the form if
-    the field is missing.
-Set this to 'logfailure' to log a notice to the roundup
-    log if the field is invalid or missing, but accept
-    the post.
-Set this to 'no' to ignore the field and accept the post.
-            """),
         (CsrfSettingOption, 'csrf_enforce_header_X-REQUESTED-WITH', "yes",
             """This is only used for xmlrpc and rest requests. This test is
 done after Origin and Referer headers are checked. It only
Roundup Issue Tracker: http://roundup-tracker.org/