self.current_user: self.redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application [https://github.com/tornadoweb/tornado/tree/stable/demos/blog] override RequestHandler.check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() → bool[source] Checks the Etag header against requests’s If-None-Match. Returns True

self.current_user: self.redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application [https://github.com/tornadoweb/tornado/tree/stable/demos/blog] override RequestHandler.check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() → bool[source] Checks the Etag header against requests’s If-None-Match. Returns True

self.current_user: self.redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application [https://github.com/tornadoweb/tornado/tree/stable/demos/blog] override RequestHandler.check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() Checks the Etag header against requests’s If-None-Match. Returns True if the request’s

self. current_user: self.redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application for a complete example that uses authentication (and stores override RequestHandler. check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() → bool Checks the Etag header against requests’s If-None-Match. Returns True if the

3 current_user: self.redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application for a complete example that uses authentication (and stores override RequestHandler. check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() Checks the Etag header against requests’s If-None-Match. Returns True if the request’s

self. current_user: self.redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application for a complete example that uses authentication (and stores override RequestHandler. check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() Checks the Etag header against requests’s If-None-Match. Returns True if the request’s

self. current_user: self.redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application for a complete example that uses authentication (and stores override RequestHandler. check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() → bool Checks the Etag header against requests’s If-None-Match. Returns True if the

self.current_user: self. redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application for a complete example that uses authentication (and stores override RequestHandler. check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing prepare has not. (These are considered bugs and may be fixed in the future, but for now you may need to check to see if the initialization work done in prepare has occurred) on_finish may not produce any output

self.current_user: self. redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application for a complete example that uses authentication (and stores override RequestHandler. check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing 4 Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() → bool Checks the Etag header against requests’s If-None-Match. Returns True if the

self.current_user: self. redirect() and may not be appropriate for non-browser-based login schemes. Check out the Tornado Blog example application for a complete example that uses authentication (and stores override RequestHandler. check_xsrf_cookie(). For example, if you have an API whose authentication does not use cookies, you may want to disable XSRF protection by making check_xsrf_cookie() do nothing Other RequestHandler.application The Application object serving this request RequestHandler.check_etag_header() → bool Checks the Etag header against requests’s If-None-Match. Returns True if the