kfir91 Posted February 5, 2011 Share Posted February 5, 2011 i have form in ajax the checking in php file the php file there is GETs i have CSRF in the form but token not help here because there is option to add the token in the get what i need to do? Quote Link to comment https://forums.phpfreaks.com/topic/226786-csrf-with-ajax-and-get/ Share on other sites More sharing options...
RichardRotterdam Posted February 6, 2011 Share Posted February 6, 2011 The csrf (cross site request forgery) doesn't have much to do with ajax but more with a direct script request since you can't do a cross site ajax request. Can't you simply use a session that prevents a request from a different domain? Quote Link to comment https://forums.phpfreaks.com/topic/226786-csrf-with-ajax-and-get/#findComment-1170596 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.