Add CSRF Handling
Closed this issue · 1 comments
marcuspoehls commented
As soon as server side session support has landed, let's run our own CSRF middleware. The CSRF secret is stored in the session and the CSRF token is part of the response data that the user will have to send on POST, PUT, PATCH and DELETE requests
marcuspoehls commented
done