Skip to content
This repository has been archived by the owner on Nov 9, 2022. It is now read-only.

Finish CSRF implementation #5

Open
qixils opened this issue Apr 1, 2022 · 0 comments
Open

Finish CSRF implementation #5

qixils opened this issue Apr 1, 2022 · 0 comments
Assignees
@adamthedog @qixils
Labels
bug Something isn't working enhancement New feature or request

Comments

@qixils
Copy link
Owner

qixils commented Apr 1, 2022

Need to setup some sort of node server to handle requests for frontend files which injects the CSRF token into the page somewhere

Or that can be bypassed by having the token just be added as a cookie and passed into API requests that way (note that the backend should not check for the existence of the CSRF cookie, instead it should check to see if the CSRF token passed into the body or query is correct)
@qixils qixils added enhancement New feature or request bug Something isn't working labels Apr 1, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@adamthedog adamthedog

@qixils qixils

Labels
bug Something isn't working enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@adamthedog @qixils