kfir91 Posted February 5, 2011 Share Posted February 5, 2011 i have form in ajax the checking in php file the php file there is GETs i have CSRF in the form but token not help here because there is option to add the token in the get what i need to do? Link to comment https://forums.phpfreaks.com/topic/226786-csrf-with-ajax-and-get/ Share on other sites More sharing options...
RichardRotterdam Posted February 6, 2011 Share Posted February 6, 2011 The csrf (cross site request forgery) doesn't have much to do with ajax but more with a direct script request since you can't do a cross site ajax request. Can't you simply use a session that prevents a request from a different domain? Link to comment https://forums.phpfreaks.com/topic/226786-csrf-with-ajax-and-get/#findComment-1170596 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.