If the client stores somewhere in memory the text to verify against, wouldn't be possible for a bot to get it somehow?
This API is designed to be used by another backend service and inserted into a template. That backend service should then store the validation string against the userโs session object.
Let me know if that doesnโt make sense!
It does now. Thanks!
Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink.
Hide child comments as well
Confirm
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
If the client stores somewhere in memory the text to verify against, wouldn't be possible for a bot to get it somehow?
This API is designed to be used by another backend service and inserted into a template. That backend service should then store the validation string against the userโs session object.
Let me know if that doesnโt make sense!
It does now. Thanks!