mirror/axum-htmx
1
0
Fork 0
mirror of https://github.com/robertwayne/axum-htmx synced 2024-11-24 04:12:50 +01:00
Code Issues Projects Releases Packages Wiki Activity

Update README.md

Browse source
This commit is contained in:
Rob Wagner 2023-07-27 23:03:16 -04:00
parent 8befd4414b
commit 4aa5cd299d
No known key found for this signature in database
GPG key ID: 53CCB4497B15CF61
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
README.md
View file

@ -58,6 +58,12 @@ for the `HX-Request` header. This will return a `403: Forbidden` response if the
header is not present, which is useful if you want to make an entire router, say header is not present, which is useful if you want to make an entire router, say
`/api`, only accessible via htmx requests. `/api`, only accessible via htmx requests.
_It should be noted that this is NOT a replacement for authentication. A user
can trivially set the `HX-Request` header themselves. This is merely a
convenience for preventing users from receiving partial responses without full
context. If you need to secure an endpoint, you should be using a proper
authentication system._
## Example: Extractors ## Example: Extractors
In this example, we'll look for the `HX-Boosted` header, which is set when In this example, we'll look for the `HX-Boosted` header, which is set when