do i need csrf token for post requests on my app? #11345
Unanswered
imunderwater
asked this question in
Help
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I use credentials to authenticate users in my app, do i need an extra layer of security to include the csrf token on sensitive requests?
The big question here, what is the purpose of csrf token if the sessionId has the sameSite attribute on its cookie (which is block cookies on cross-site requests)
how it csrf-token can be useful?
Beta Was this translation helpful? Give feedback.
All reactions