Opened 15 years ago

Last modified 15 years ago

#240 closed defect (FIXED)

Provide facility for configuring application-required middleware

Reported by: nyergler Owned by: nyergler
Priority: minor Milestone: 0.1.0
Component: programming Keywords:
Cc: Parent Tickets:

Description

Some things, like CSRF protection (#361), benefit from the ability to uniformly call helpers before and after a request is processed by the view. In the case of CSRF, we want to confirm that the token matches before processing the view, and make sure the token is set before delivering the response. Unlike WSGI middleware, this sort of wrapping is an integral part of the application.

Change History (4)

comment:1 by nyergler, 15 years ago

Status: NewIn Progress

This is implemented in 569-application-middleware in my clone ([https://gitorious.org/nyergler/mediagoblin/nyerglers-mediagoblin/commits/569-application-middleware](https://gitorious.org/nyergler/mediagoblin/nyerglers-mediagoblin/commits/569-application-middleware))

comment:2 by Christopher Allan Webber, 15 years ago

Status: In ProgressClosed

Looks great to me. I suspect as for "configuration' of this middleware our current config files suffice... maybe we could create a standard for sections of the application for various middleware configs, but otherwise looks great. Merged, and closed!

comment:3 by Elrond, 15 years ago

Component: InfrastructureProgramming

comment:3 by Will Kahn-Greene, 14 years ago

The original url for this bug was http://bugs.foocorp.net/issues/569 .

Note: See TracTickets for help on using tickets.