Skip to content

DEV Community

Discussion on: Do I Need CSRF Token?

View post

Replies for: Hm, that was a bad example. Basically anything triggering an action can be affected. The action ca be triggered involuntarily on the users behalf,...

Clavin June • Dec 4 '20

I see, that's make sense. That's why CSRF Token will be regenerated for every request. Thanks, gonna read that soon

Clavin June • Dec 4 '20

but, what if I alr handle that using token based auth? do I still need that?