Csrf-protection Alternatives
Similar projects and alternatives to csrf-protection based on common topics and language
-
-
-
SurveyJS
Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.
-
-
-
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a better csrf-protection alternative or higher similarity.
csrf-protection reviews and mentions
Posts with mentions or reviews of csrf-protection.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-10-06.
-
Secure CSRF alternative to csurf
First of all, fastify/csrf-protection * Their default getTokenValue is okay as it is retrieving the token value from custom headers, which can only be sent by JS on the same domain. It does not have the same body/query param fall back like csurf. * They introduced a "userInfo" property in order to avoid session-hijacking, however, in doing this, they introduced a BIG problem. * If you use their userInfo option, you can no longer use their protection to protect unauthenticated routes. * Session hijacking should be resolved by destroying and re-creating sessions after login and after logout, it should NOT be dependent on the CSRF protection layer. * They are using their own fork of csrf which was originally used by csurf and is a tad outdated, this protection does not let you configure the size of your tokens.
Stats
Basic csrf-protection repo stats
1
132
6.2
18 days ago
fastify/csrf-protection is an open source project licensed under GNU General Public License v3.0 or later which is an OSI approved license.
The primary programming language of csrf-protection is JavaScript.
Popular Comparisons
Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com