Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
reza_n
on May 1, 2018
|
parent
|
context
|
favorite
| on:
You know how HTTP GET requests are meant to be ide...
> This would still happen even if there was a token or session associated.
This is exactly the scenario a CSRF token is support to prevent. But I understand your point.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
This is exactly the scenario a CSRF token is support to prevent. But I understand your point.