As of today aah Anti-CSRF security module only allows current host as accepted referrers. However real-world use needs further option to have list of trusted host/origins.
Added a configuration option for aah user so that they can provide list of trusted hosts-
jeevatkm
commented
5 years ago
As of today aah Anti-CSRF security module only allows current host as accepted referrers. However real-world use needs further option to have list of trusted host/origins.
Added a configuration option for aah user so that they can provide list of trusted hosts-