1👍
✅
It depends on your application. If you use HTTP correctly, it has no sense. Simply put: Don’t make data modification methods work on GET requests.
If you’re making a simple web application, make every method that modifies something work with POST (create resources, delete, modify, even logout).
If you’re doing some REST service, use the proper POST, PUT, DELETE, PATCH methods.
0👍
Django’s CSRF middleware doesn’t check the CSRF values on a GET request, so you can omit it without any danger (see also the source code).
- [Answer]-How to save JSON from Vk.com API response to MongoDB?
- [Answer]-Completely stripping certain HTML Tags in Django forms
- [Answer]-Login to spring webapp from external application
- [Answer]-Django: Template logic not rendering query data, no errors given either
- [Answer]-Django Templateview class instantiation
Source:stackexchange.com