Open arcynum opened 8 years ago
Need to build a CSRF token system into the application to prefer forms from arriving from unknown locations.
Tokens should be one use only, at which time a new token is generated. Each token should live for a fixed amount of time (around 30 minutes default).
Need to build a CSRF token system into the application to prefer forms from arriving from unknown locations.
Tokens should be one use only, at which time a new token is generated. Each token should live for a fixed amount of time (around 30 minutes default).