How to incorporate CSRF token into response.js

Question

How to incorporate CSRF token into response.js

Opened this issue 7 years ago · 2 comments

Hi All,
I have been using response.js(v1.4.2) in my website but was flagged out cross-site request forgery. The recommendation was to make changes to contain a user-specific secret to prevent an attacker from making unauthorized request and an appropriate mitigation technique should be in place.

May I know how do I proceed to change for this version?

Answer 1 · 2017-08-22T01:28:06.000Z

Hi All,
Any updates?

Answer 2 · 2018-03-09T15:16:43.000Z

Bump! Same here. Need to know if any change will be made in respond.js? Or if this is incumbent on the user of the lib to deal with?