Sep 13, 2024
CSRF attacks are a thing of the past. The default value for the SameSite attribute on a cookie is Lax which means the cookie won't be sent cross-site, rendering CSRF attacks useless.
Sign up to discover human stories that deepen your understanding of the world.
Free
Distraction-free reading. No ads.
Organize your knowledge with lists and highlights.
Tell your story. Find your audience.
Membership
Read member-only stories
Support writers you read most
Earn money for your writing
Listen to audio narrations
Read offline with the Medium app
Written by David Klempfner
I’m a software developer who is passionate about learning how things work behind the scenes.
