Change comment:
There is no comment for this version
Summary
-
Page properties (1 modified, 0 added, 0 removed)
Details
- Page properties
-
- Content
-
... ... @@ -177,3 +177,7 @@ 177 177 xm.form_token // get the current CSRF token that ou should pass to your script's to avoid CSRF attacks. 178 178 }); 179 179 {{/code}} 180 + 181 +{{warning}} 182 +It is actually the only clean way. In the past, we used to add some <meta> tags in the <head> section of the page, but is not even valid in HTML5. So now we have introduced this API that we will maintain, meanwhile relying on any other element in the page could be broken in the future! 183 +{{/warning}}