[Owasp-csrfprotector] protection for GET requests

Minhaz A V minhazav at gmail.com
Fri May 30 00:55:39 UTC 2014


I could not think of a good configuration name for this field, where user
maintain url/regex of those pages for which CSRF validation (GET) is
supposed to be done. Available at:
https://github.com/mebjas/CSRF-Protector-PHP/blob/GET-support/libs/config.php#L17


suggest me one, *verifyGetFor *doesn't look good as a parameter name :O
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-csrfprotector/attachments/20140530/f5bf722b/attachment.html>


More information about the Owasp-csrfprotector mailing list