Use the glide.security.use_csrf_token property to ensure the use
of a secure token to identify and validates incoming requests, which in turn are used to prevent
these attacks.
Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted
actions on a web application in which they're currently authenticated. CSRF attacks
specifically target state-changing requests, not theft of data, since the attacker has no
way to see the response to the forged request.
The following properties can be enabled for added controls over CSRF token:
- glide.security.csrf_previous.time_limit
- glide.security.csrf_previous.allow
- glide.security.csrf.strict.validation.mode