streamaserver/streama

Add CSRF Token Validation for Security

Open

#1,087 opened on Sep 13, 2021

View on GitHub
 (0 comments) (2 reactions) (0 assignees)JavaScript (977 forks)batch import
BugHelp wanted

Repository metrics

Stars
 (9,565 stars)
PR merge metrics
 (No merged PRs in 30d)

Description

See https://portswigger.net/web-security/csrf/tokens - Currently streama is lacking this type of validation and has potential for security risks due to it.

There is a guide here, maybe that works https://www.baeldung.com/spring-security-csrf

Contributor guide