Wiki articles tagged with "CSRF"

Showing 1-5 of 5 items.

[PT-BR] Proteção Contra Logout CSRF

Created 12 years ago by Rodrigo Coelho, updated 12 years ago by Rodrigo Coelho.
0 comments

CSRF é o acrônimo para Cross-site request forgery.
CSRF é um ataque que forca o usuário a executar ações não desejadas numa aplicação Web na qual ele está autenticado.

2 1
3 followers
Viewed: 13 633 times
Version: 1.1
Category: Tutorials
Tags: CSRF, Logout CSRF, security, Segurança

Checking for "expired" sessions/logins on the client side

Created 10 years ago by le_top, updated 9 years ago by le_top.
0 comments

Getting "Expired token" errors ? Here is a solution to avoid invalid CSRF on POST or ajax requests, or user identity changes.

4 0
12 followers
Viewed: 35 356 times
Version: 1.1
Category: How-tos
Tags: allowAutoLogin, Cache-Control, cookie, CSRF, login, security, session, user auth, UserIdentity

Logout CSRF Protection

Created 12 years ago by Rodrigo Coelho, updated 12 years ago by Rodrigo Coelho.
1 comment

CSRF is the acronymn for Cross-site request forgery.
It is an attack which forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated.

10 0
11 followers
Viewed: 29 579 times
Version: 1.1
Category: Tutorials
Tags: CSRF, Logout CSRF, security

default csrf security and ajax post in one controller

Created 10 years ago by jasonban, updated 10 years ago by CeBe.
3 comments

Hello Yii friends

0 3
8 followers
Viewed: 27 300 times
Version: 1.1
Category: Tutorials
Tags: ajax request, CSRF, php, post, security

How to validate CSRF token with session

Created 12 years ago by yangmls, updated 12 years ago by yangmls.
7 comments

First of all, You must change component config to enable the default Yii CSRF validation.

21 0
27 followers
Viewed: 100 365 times
Version: 1.1
Category: How-tos
Tags: CSRF, session