convore.json/groups/django-community/csrf-failures/messages.json

[{"user_id": 13320, "stars": [], "topic_id": 47663, "date_created": 1320865163.1107581, "message": "I understand the standard reasons CSRF protection can fail for everyone. I have one set of users where CSRF protection fails for a small subset.", "group_id": 81, "id": 2540918}, {"user_id": 13320, "stars": [], "topic_id": 47663, "date_created": 1320865396.909503, "message": "From looking at it, my best guess is these users happen to have cookies disabled. Is there any other user-based (browser-based?) reason only some people are having trouble with CSRF but not others? Could being behind a web proxy make it seem like a user is inadvertently doing a cross site request forgery?", "group_id": 81, "id": 2540938}, {"user_id": 23352, "stars": [{"date_created": 1320993238.299437, "user_id": 13806}, {"date_created": 1325262956.8087251, "user_id": 15343}], "topic_id": 47663, "date_created": 1320907817.902997, "message": "@amjoconn One of the failure modes for CSRF is IE and cross-domain iframes: https://code.djangoproject.com/ticket/17157", "group_id": 81, "id": 2544813}, {"user_id": 13320, "stars": [], "topic_id": 47663, "date_created": 1321532106.68959, "message": "Interesting. The problem ended up being a disabled tag in the form, which is a bad idea in general, but it only caused a problem in IE.", "group_id": 81, "id": 2588767}]