fixes #27157 CSRF protection documentation
* removed reference to GET requests where it applies also to other HTTP verbs * updated documentation to try and better explain how CSRF protection works with XHR, and the potential exposure with CORS
Showing
想要评论请 注册 或 登录