Rename the library: How-to-get-total-lost-regarding-CSRF!

[Use only JSON APIs](https://github.com/pillarjs/understanding-csrf#use-only-json-apis) then
[Disable CORS](https://github.com/pillarjs/understanding-csrf#disable-cors) then
[Make sure that none of your GET requests change any relevant data in your database.](https://github.com/pillarjs/understanding-csrf#get-should-not-have-side-effects) then
[Avoid using POST](https://github.com/pillarjs/understanding-csrf#avoid-using-post) and then :)
[Don't use method override!](https://github.com/pillarjs/understanding-csrf#dont-use-method-override) and so on!

Are we allowed to make any changes in the database? :)))))

This page is referred in the first row of [csurf](https://github.com/expressjs/csurf) readme, as this page referres [csurf](https://github.com/pillarjs/understanding-csrf#understanding-csrf) team. I'd rather expect something like [this](https://github.com/xing/cross-application-csrf-prevention) to understand something about CSRF!

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Rename the library: How-to-get-total-lost-regarding-CSRF! #20

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Rename the library: How-to-get-total-lost-regarding-CSRF! #20

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions