Press Ctrl / CMD + C to copy this to your clipboard.
This post will be reported to the moderators as potential spam to be looked at
Hello,
I'm currently looking into some security recommendations, for a customers site. And one of the recommendations is to add CSRF tokens to Posts we do.
On our own code this is easy, however we also use HTML forms that post directly to "/base/TC/FormPost.aspx".
Does TeaCommerce have an option to enable CSRF tokens, for these HTML forms?
TeaCommerce Version: 3.1.4.0
Regards,
Jan-Pieter Hoiting
Hi Jan-Pieter
Tea Commerce does not have CSRF tokens because the JavaScript API also use the same POST methods as the HTML API does. I see that as a thing that could be added. Feel free to add a request on GitHub - but better yet - make a PR with the feature :)
https://github.com/TeaCommerce/Tea-Commerce-for-Umbraco
Kind regards
Anders
is working on a reply...
Write your reply to:
Upload image
Image will be uploaded when post is submitted
TeaCommerce and CSRF
Hello,
I'm currently looking into some security recommendations, for a customers site. And one of the recommendations is to add CSRF tokens to Posts we do.
On our own code this is easy, however we also use HTML forms that post directly to "/base/TC/FormPost.aspx".
Does TeaCommerce have an option to enable CSRF tokens, for these HTML forms?
TeaCommerce Version: 3.1.4.0
Regards,
Jan-Pieter Hoiting
Hi Jan-Pieter
Tea Commerce does not have CSRF tokens because the JavaScript API also use the same POST methods as the HTML API does. I see that as a thing that could be added. Feel free to add a request on GitHub - but better yet - make a PR with the feature :)
https://github.com/TeaCommerce/Tea-Commerce-for-Umbraco
Kind regards
Anders
is working on a reply...