Slim-Extras icon indicating copy to clipboard operation
Slim-Extras copied to clipboard

Published 20 hours ago verified publisher icon codeguy

CSRF Protection - also check the header

Open adamsch1 opened this issue 12 years ago • 1 comments

Hi -

I was reading the CSRF guard code. Would the authors be opposed to also checking for the csrf key/value set in a X header like X-CSRF-Token ?? It's easier in come scenarios [AngularJS] to use the header.

if there is interest I will submit a patch

adamsch1 avatar Feb 19 '13 17:02 adamsch1

Yes please, send your pull request to develop branch.

silentworks avatar Feb 28 '13 23:02 silentworks