Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
As the title says:
does it make any sense to use csrf_token with get request e.g. for pagination variable
I do not think so but, did not find answer on the net, so that is why I am asking
It depends on your application. If you use HTTP correctly, it has no sense. Simply put: Don’t make data modification methods work on GET requests.
If you’re making a simple web application, make every method that modifies something work with POST (create resources, delete, modify, even logout).
If you’re doing some REST service, use the proper POST, PUT, DELETE, PATCH methods.