kss-in-general.md

@@ -260,6 +260,21 @@ The main configuration is done within an @config rule:
 
     The endpoint url to the RPC service.
 
+* csrf-selector
+
+    A CSS selector used to query for an element which holds the CSRF
+    token. Either in its data attribute "data-csrftoken" or in its value
+    attribute. Can be specified in addition to *csrf-cookie*.
+
+* csrf-cookie
+
+    The cookie name used to read the CSRF token. Can be specified in
+    addition to *csrf-selector*.
+
+* csrf-header
+
+    The header name used to send back the CSRF token.
+
 
 Simple cases
 ------------