Add CSRF Handling

Question

Add CSRF Handling

Closed this issue 5 years ago · 1 comments

As soon as server side session support has landed, let's run our own CSRF middleware. The CSRF secret is stored in the session and the CSRF token is part of the response data that the user will have to send on POST, PUT, PATCH and DELETE requests

marcuspoehls commented 5 years ago

done