web servers require some kind of protection against XSRF vulnerabilities (go/xsrf)

dart-lang / sdk

The Dart SDK, including the VM, JS and Wasm compilers, analysis, core libraries, and more.

https://dart.dev

BSD 3-Clause "New" or "Revised" License

10.08k stars 1.56k forks source link

web servers require some kind of protection against XSRF vulnerabilities (go/xsrf) #19679

Open a-siva opened 10 years ago

a-siva commented 10 years ago

Most web servers these days require some kind of protection against XSRF vulnerabilities (go/xsrf). It would be potentially nice to have an XSRF protection class in Dart, similarly to e.g. XsrfToken for Java in google3. This would prevent developers of web applications from going into the hassle of implementing it on their own.

If added, the implementation of the class would have to be security reviewed.

floitschG commented 10 years ago

Added Library-IO, Triaged labels.