Per route CSRF #1

New issue

Open

opened 2018-11-01 14:51:22 +00:00 by JohnMidity · 0 comments

JohnMidity commented 2018-11-01 14:51:22 +00:00 (Migrated from github.com)

Copy link

Because in the current setup the CSRF is running on all routes, it is not possible to call the API. To solve this, a per-route CSRF should be made possible and then the CSRF can be off for API routes.

Because in the current setup the CSRF is running on all routes, it is not possible to call the API. To solve this, a per-route CSRF should be made possible and then the CSRF can be off for API routes.

This discussion has been locked. Commenting is limited to contributors.

No Branch/Tag specified

Branches Tags

master

dependabot/composer/twig/twig-2.16.1

dependabot/composer/twbs/bootstrap-4.3.1

No results found.

Labels

Clear labels   

bug

Something isn't working

  

dependencies

Pull requests that update a dependency file

  

duplicate

This issue or pull request already exists

  

enhancement

New feature or request

  

good first issue

Good for newcomers

  

help wanted

Extra attention is needed

  

invalid

This doesn't seem right

  

question

Further information is requested

  

wontfix

This will not be worked on

No labels

bug

dependencies

duplicate

enhancement

good first issue

help wanted

invalid

question

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

John/Snugger#1

No description provided.