Why not check the csrf_token in the cookie?

后端 未结 0 1011
北荒
北荒 2020-11-21 10:13

When checking csrf token, why only check the csrf token in the form, or only check the X-CSRFToken in the request header, but not the csrf_token in the cookie? Does checking

相关标签:
回答
  • 消灭零回复
提交回复
热议问题