PHP Classes

CSRF Attacks

Recommend this page to a friend!

      PHP AIO Security Class  >  All threads  >  CSRF Attacks  >  (Un) Subscribe thread alerts  
Subject:CSRF Attacks
Summary:CSRF Attacks to API
Messages:2
Author:nourmajed
Date:2019-11-14 23:31:45
 

  1. CSRF Attacks   Reply   Report abuse  
Picture of nourmajed nourmajed - 2019-11-14 23:31:45
Hello There

I just want to ask if there a way to protect API web pages from CSRF attacks , because in (PHP AIO Security Class) package when i add value to variable API as "TRUE" the CSRF protection it will stop

  2. Re: CSRF Attacks   Reply   Report abuse  
Picture of Marco Cesarato Marco Cesarato - 2019-11-16 13:06:17 - In reply to message 1 from nourmajed
Yes because CSRF protection is used only for form like pages. On API usually it use a token then don't need it.