Archived! Now that all modern browsers implement SameSite cookies and the Origin HTTP header, this bundle is - in most cases - not necessary anymore. Learn how to protect your Symfony APIs from CSRF attacks. If you need to maintain old applications, take a look to DneustadtCsrfCookieBundle. This API Platform and Symfony bundle provides automatic Cross Site Request Forgery (CSRF or XSRF) protection for client-side applications. Despite the name, it works with any client-side technology including Angular, React, Vue.js, and jQuery. Actually, any JavaScript code issuing XMLHttpRequest or using the Fetch API can leverage this bundle.

Features

  • To prevent CSRF attacks, the bundle will check that the header's value match the cookie's value
  • Use Composer to install this bundle
  • Configure URLs where the cookie must be set and that must be protected against CSRF attacks
  • Examples available
  • Integration with the Symfony Form Component
  • Full Configuration

Project Samples

JavaScript CSRF Protection Bundle Screenshot 1

Project Activity

See All Activity >

Categories

Security

License

MIT License

Follow JavaScript CSRF Protection Bundle

JavaScript CSRF Protection Bundle Web Site

Other Useful Business Software
Simplify Purchasing For Your Business Icon
Simplify Purchasing For Your Business

Manage what you buy and how you buy it with Order.co, so you have control over your time and money spent.

Simplify every aspect of buying for your business in Order.co. From sourcing products to scaling purchasing across locations to automating your AP and approvals workstreams, Order.co is the platform of choice for growing businesses.
Learn More
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of JavaScript CSRF Protection Bundle!

Additional Project Details

Programming Language

PHP

Related Categories

PHP Security Software

Registered

2023-10-04
Report inappropriate content