Re: [Catalyst] preventing Cross Site Request Forgery

Bill Moseley Tue, 19 Jun 2007 07:26:34 -0700

On Tue, Jun 19, 2007 at 04:10:25AM -0500, Jonathan Rockway wrote:
> http://www.25hoursaday.com/weblog/2007/06/05/WhatRubyOnRailsCanLearnFromASPNET.aspx
> 
> and realized that Catalyst is just as "vulnerable" as Rails.  So, I wrote 
> Catalyst::Plugin::FormCanary to solve the problem.  If you care about CSRF, 
> get it from CPAN, load it into your app, and stop worrying :)


Is this much different than Catalyst::Plugin::RequestToken?

-- 
Bill Moseley
[EMAIL PROTECTED]


_______________________________________________
List: Catalyst@lists.rawmode.org
Listinfo: http://lists.rawmode.org/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.rawmode.org/
Dev site: http://dev.catalyst.perl.org/

Re: [Catalyst] preventing Cross Site Request Forgery

Reply via email to