Enable CSRF #2

New Issue

Open

opened 2023-10-29 21:24:36 +01:00 by djmil · 0 comments

djmil commented 2023-10-29 21:24:36 +01:00

Owner

Copy Link

Providing CSRF is relatively easy for the SpringBoot. The major problem, is to effectively manage it on a client (React side).

It looks that client has to store CSRF token, which is assigned to each Session by server, and manually put it into POST req header.

Providing CSRF is relatively easy for the SpringBoot. The major problem, is to effectively manage it on a client (React side). [It looks](https://docs.spring.io/spring-security/reference/features/exploits/csrf.html) that client has to store CSRF token, which is assigned to each Session by server, and _manually_ put it into POST req header.

djmil added the

middleware

label 2023-10-29 21:24:36 +01:00

djmil added the

front

label 2023-10-29 21:30:56 +01:00

djmil added a new dependency 2024-06-23 22:17:11 +02:00

#39 message2opponent

djmil added this to the Refactor project 2024-06-23 22:18:09 +02:00

djmil removed a dependency 2024-06-23 22:19:31 +02:00

#39 message2opponent

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

No results found.

Labels

Clear labels   

backend

Contract based, distributed database on a Corda blockchain

  

bug

  

front

Frontend of an application, mostly consist of JS and React code

  

improvement

No mission critical feature, that would be nice to have

  

middleware

A Java middleware layer, transfers requests from React to Corda

No Label

backend

bug

front

improvement

middleware

Milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Refactor

Assignees

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: djmil/corda-checkers#2

No description provided.