• [Security] With CSRF tokens, is SameSite=Lax required? And storing CSRF tokens in cookies bad? https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html#double-submit-cookie 2 comments 28/3/2023 webdev

Linking pages

Linked pages

Related searches:

Search whole site: site:cheatsheetseries.owasp.org

Search title: Cross-Site Request Forgery Prevention - OWASP Cheat Sheet Series

See how to search.