- General questions on secure authentication for SPAs with stateless API https://www.owasp.org/index.php/CSRF_Prevention_Cheat_Sheet#Protecting_REST_Services:_Use_of_Custom_Request_Headers 4 comments webdev
Linking pages
Linked pages
- Can I use... Support tables for HTML5, CSS3, etc https://caniuse.com/#search=css%20grid 519 comments
- HTTP referer - Wikipedia https://en.wikipedia.org/wiki/HTTP_referer#Origin_of_the_term_referer 86 comments
- GitHub - axios/axios: Promise based HTTP client for the browser and node.js https://github.com/axios/axios 82 comments
- Chromium Blog: Developers: Get Ready for New SameSite=None; Secure Cookie Settings https://blog.chromium.org/2019/10/developers-get-ready-for-new.html 56 comments
- Window.postMessage() - Web APIs | MDN https://developer.mozilla.org/en-US/docs/Web/API/Window/postMessage 22 comments
- RFC 7231 - Hypertext Transfer Protocol (HTTP/1.1): Semantics and Content https://tools.ietf.org/html/rfc7231 15 comments
- Informationen zum Bug-Bounty-Programm von Meta https://www.facebook.com/whitehat/ 8 comments
- http://seclab.stanford.edu/websec/csrf/csrf.pdf 4 comments
- Set-Cookie - HTTP | MDN https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie 3 comments
- Cross-Site Request Forgery Prevention - OWASP Cheat Sheet Series https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html#hmac-based-token-pattern 2 comments
- Forbidden header name - MDN Web Docs Glossary: Definitions of Web-related terms | MDN https://developer.mozilla.org/en-US/docs/Glossary/Forbidden_header_name 2 comments
- Egor Homakov: Playing With Referer & Origin http://homakov.blogspot.com/2012/04/playing-with-referer-origin-disquscom.html 0 comments
- Bei Facebook anmelden https://www.facebook.com/notes/facebook-bug-bounty/client-side-csrf/2056804174333798/ 0 comments
- Web Security https://infosec.mozilla.org/guidelines/web_security 0 comments
Would you like to stay up to date with Web Development? Checkout Web Development
Weekly.
Related searches:
Search whole site: site:www.owasp.org
Search title: Cross-Site Request Forgery Prevention - OWASP Cheat Sheet Series
See how to search.