Python Flask CSRF Protection and Attack Demo
elibro
learningtechnologyadminbackendcross site request forgerycsrfcsrfprotectioncsscyber securitydevelopmentecommerceflaskflask-wtfformsfrontendgunicornhtmljavascriptmitigationnginxpythonsecuritysecurity attacksoftwaresoftware developmentsoftware engineeringtutorialweb developmentweb frameworkwebappwebdevwebserverwebsite
The core concept is verifying that the post requests for state changing routes contain a server generated token as proof that the request was not forged.
pip install --user Flask-WTF https://flask-wtf.readthedocs.io/en/1.0.x/ ... https://www.youtube.com/watch?v=IkzdjP9wWas
2022-04-09
0.0 LBC
Copyrighted (contact publisher)
60247735 Bytes