CSRF

Middleware for Dylan which can generate csrf tokens and protect from csrf attacks.

Install

npm install @dylan/csrf

Usage

const dylan = require('dylan');
const session = require('@dylan/session');
const csrf = require('@dylan/csrf');
const app = dylan();

app.use(session({
  cookie: 'foo',
  secret: 'boo'
}));

app.use(csrf());

app.get('/contact', (req, res) => {
  res.send(`
    <form method="post" action="/contact">
      <input type="hidden" name="csrf-token" value="${res.locals.csrfToken}">
      <input type="text" name="message" value="hello world">
      <button>Talk</button>
    </form>
  `);
});

app.post('/contact', (req, res) => {
  console.log(req.body.message); // hello world
  res.end('safely handled');
});

Name		Name	Last commit message	Last commit date
Latest commit History 17 Commits
.gitignore		.gitignore
index.js		index.js
license		license
package-lock.json		package-lock.json
package.json		package.json
readme.md		readme.md
test.js		test.js

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

.gitignore

.gitignore

index.js

index.js

license

license

package-lock.json

package-lock.json

package.json

package.json

readme.md

readme.md

test.js

test.js

Repository files navigation

CSRF

Install

Usage

About

Releases 1

Packages

Contributors 2

Languages

License

shanebo/csrf

Folders and files

Latest commit

History

Repository files navigation

CSRF

Install

Usage

About

Resources

License

Stars

Watchers

Forks

Languages