csrf - yibinericxia/documents GitHub Wiki
Add "SameSite=strict" to the cookie and use it in the response header.
-
Generation:
-
Implementation: Transmit the CSRF token within a hidden field of a form which is submitted via POST
Add "SameSite=strict" to the cookie and use it in the response header.
Generation:
Implementation: Transmit the CSRF token within a hidden field of a form which is submitted via POST