| Questions about csrf protection |
I do net set the csrf filter to GET, the first example was only to show what happens if I define the $methods array. My normal setting is the second one, with $methods = []. I do not however understand, why, even in the case where I do not explicitly set $method=['GET'} the csrf filter is applied to GET as shown in the second output...
My ajax calls are always POST. |
| Messages In This Thread |
|
Questions about csrf protection - by PhilInLoco - 08-14-2024, 06:10 AM
RE: Questions about csrf protection - by ozornick - 08-14-2024, 06:17 AM
RE: Questions about csrf protection - by PhilInLoco - 08-14-2024, 06:54 AM
RE: Questions about csrf protection - by kenjis - 08-15-2024, 06:48 PM
RE: Questions about csrf protection - by PhilInLoco - 08-16-2024, 07:04 AM
RE: Questions about csrf protection - by kenjis - 08-16-2024, 07:50 PM
RE: Questions about csrf protection - by PhilInLoco - 08-17-2024, 05:12 AM
RE: Questions about csrf protection - by kenjis - 08-17-2024, 06:59 PM
|
