fix: added CSRF check for granting access via session authentication

2025-12-10 19:34:34 +00:00 · 2022-04-30 05:04:27 +05:00
parent d47ed6d0e8
commit b060ad1b8e
8 changed files with 37 additions and 14 deletions
--- a/api/package.json
+++ b/api/package.json
@@ -56,6 +56,7 @@
    "csurf": "^1.11.0",
    "express": "^4.17.1",
    "express-session": "^1.17.2",
+    "helmet": "^5.0.2",
    "joi": "^17.4.2",
    "jsonwebtoken": "^8.5.1",
    "mongoose": "^6.0.12",