Add changelog entry for CSRF status code; remove line at EOF

commit: 2761ff49f406d43c749ea87f7d5ebd4e2b7c3197 [log] [tgz]
author: Kyle Valade <kylevalade@gmail.com> Sun Jul 13 16:11:19 2014 -0700
committer: Kyle Valade <kylevalade@gmail.com> Sun Jul 13 16:11:19 2014 -0700
tree: 9a1e2ac1c29120b8eb549927fb493b262a9d68ee
parent: 05fcc09436c0c34cc5883d7840abc81ad5af7969 [diff] [blame]
diff --git a/user_guide_src/source/changelog.rst b/user_guide_src/source/changelog.rst
index 0895246..ec38a3e 100644
--- a/user_guide_src/source/changelog.rst
+++ b/user_guide_src/source/changelog.rst

@@ -506,6 +506,7 @@
       -  Added ``$config['csrf_regeneration']``, which makes token regeneration optional.
       -  Added ``$config['csrf_exclude_uris']``, which allows you list URIs which will not have the CSRF validation methods run.
       -  Modified method ``sanitize_filename()`` to read a public ``$filename_bad_chars`` property for getting the invalid characters list.
+      -  Return status code of 403 instead of a 500 if CSRF protection is enabled but a token is missing from a request.
 
    -  :doc:`Language Library <libraries/language>` changes include:
commit	2761ff49f406d43c749ea87f7d5ebd4e2b7c3197	[log] [tgz]
author	Kyle Valade <kylevalade@gmail.com>	Sun Jul 13 16:11:19 2014 -0700
committer	Kyle Valade <kylevalade@gmail.com>	Sun Jul 13 16:11:19 2014 -0700
tree	9a1e2ac1c29120b8eb549927fb493b262a9d68ee
parent	05fcc09436c0c34cc5883d7840abc81ad5af7969 [diff] [blame]