Mercurial > urweb
view tests/blob.ur @ 2116:ebfaab689570
The 2nd half of proper CSRF protection related to environment variables
author | Adam Chlipala <adam@chlipala.net> |
---|---|
date | Thu, 12 Feb 2015 15:09:26 -0500 |
parents | 67ebd30a2283 |
children |
line wrap: on
line source
fun main () = setHeader (blessResponseHeader "X-Test") "Test"; return <xml><body>Test</body></xml> fun bad () = setHeader (blessResponseHeader "X-Test") "Test"; returnBlob (textBlob "hello") (blessMime "text/plain")