sasjs/server
1
0
Fork 0
mirror of https://github.com/sasjs/server.git synced 2026-01-09 15:30:05 +00:00
Code Issues Projects Releases Wiki Activity

fix: added CSRF check for granting access via session authentication

Browse Source
This commit is contained in:
Saad Jutt
2022-04-30 05:04:27 +05:00
parent d47ed6d0e8
commit b060ad1b8e
8 changed files with 37 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
api/src/app.ts
View File

@@ -7,6 +7,7 @@ import morgan from 'morgan'
import cookieParser from 'cookie-parser'
import dotenv from 'dotenv'
import cors from 'cors'
import helmet from 'helmet'
import {
connectDB,
@@ -37,6 +38,11 @@ export const cookieOptions = {
***********************************/
export const csrfProtection = csrf({ cookie: cookieOptions })
/***********************************
* Handle security and origin *
***********************************/
app.use(helmet())
/***********************************
* Enabling CORS *
***********************************/