don't send CSRF header to external domains (!738) · Merge requests · foodsharing-dev / foodsharing · GitLab

chandi requested to merge csrf-domain-restriction into master Feb 20, 2019

closes #486 (closed)