Middleware to protect applications from CSRF (Cross-Site Request Forgery) attacks by adding tokens to HTTP requests. 💖
Web Browser- Can be used as an emulator to build applications. Example [Chrome, Firefox, Safari & Opera].Internet- Because many use CDN and to make it easier to find solutions to all problems.
const express = require('express');
const session = require('express-session');
const csrfMiddleware = require('./src/csrfMiddleware');
const app = express();
// Setup session middleware
app.use(session({
secret: 'your_secret_key',
resave: false,
saveUninitialized: true
}));
// Use CSRF protection middleware
app.use(csrfMiddleware);
// Your other middleware and routes
app.listen(3000, () => {
console.log('Server is running on port 3000');
});- This middleware generates a CSRF token and stores it in the user's session. It adds this token to requests as a hidden field in forms or as a custom HTTP header. When the user submits a form or makes a request, the server verifies that the CSRF token matches the one stored in the session, protecting against CSRF attacks.
- The middleware returns a function that acts as middleware in Express.js applications. This function adds CSRF protection to routes by generating and storing CSRF tokens in user sessions.
- v1.0.0 : 17 March 2024
- v1.0.1 : 18 March 2024
- v5.0.0 : 31 March 2024
- Facebook : Oned Ionys
- Instagram : @onedionys
- Twitter : @onedionys
- LinkedIn : @onedionys
- Copyright © 2024 One Dionys
- One Dionys - CSRF Protection Middleware is an open source project licensed under the MIT license
Love One Dionys - CSRF Protection Middleware? Support this project by donating or sharing with others in need.
Made with ❤️ One Dionys