Cross Site Request Forgery protection¶ The CSRF middleware and template tag provides easy-to-use protection against Cross Site Request Forgeries. This type of attack occurs when a malicious website contains a link, a form button or some JavaScript that is intended to perform some action on your website, using the credentials of a logged-in user who visits the malicious site in their browser. A rel
![Cross Site Request Forgery protection | Django documentation](https://cdn-ak-scissors.b.st-hatena.com/image/square/9a8c4373d53ee736dabefc94e49c6b5cacbd3763/height=288;version=1;width=512/https%3A%2F%2Fstatic.djangoproject.com%2Fimg%2Flogos%2Fdjango-logo-negative.1d528e2cb5fb.png)