CSRF protection (#798)

Closes #793. * Rename RequestParameters to MultiParams, refs #799 * Allow tuples as well as lists in MultiParams, refs #799 * Use csrftokens when running tests, refs #799 * Use new csrftoken() function, refs https://github.com/simonw/asgi-csrf/issues/7 * Check for Vary: Cookie hedaer, refs https://github.com/simonw/asgi-csrf/issues/8
2025-12-10 16:51:24 +01:00 · 2020-06-05 12:05:57 -07:00 · 2020-06-05 12:05:57 -07:00 · 84a9c4ff75
commit 84a9c4ff75
parent d96ac1d52c
9 changed files with 67 additions and 19 deletions
--- a/datasette/utils/init.py
+++ b/datasette/utils/init.py
@ -772,6 +772,9 @@ class MultiParams:
                new_data.setdefault(key, []).append(value)
            self._data = new_data

+    def __repr__(self):
+        return "<MultiParams: {}>".format(self._data)
+
    def __contains__(self, key):
        return key in self._data