On Mon, Jul 19, 2010 at 11:52 AM, Todd Ross <tar.li...@yahoo.com> wrote: > Is anyone successfully using CGI::Application::Plugin::ProtectCSRF? > Todd
Hi Todd, Sorry for the very late reply, but this thread discusses my attempt at using ProtectCSRF, and should be useful to anyone else looking to add CSRF to a CGI-App: http://www.mail-archive.com/cgiapp@lists.erlbaum.net/msg08075.html Basically, ProtectCSRF has issues when a form is redisplayed because of validation errors. I ended up writing my own plugin module (it is not on CPAN, since it looks a private data of ValidateRM). -- Mark > ----- Forwarded Message ---- > From: Todd Ross <tar.li...@yahoo.com> > To: Michael Peters <mpet...@plusthree.com> > Sent: Mon, July 19, 2010 10:48:30 AM > Subject: Re: [cgiapp] FormKeys / Nonce > > > Thanks for the reference Michael. > > Unfortunately, I can't even get the module installed, so it's difficult for me > to evaluate. ##### CGI::Application community mailing list ################ ## ## ## To unsubscribe, or change your message delivery options, ## ## visit: http://www.erlbaum.net/mailman/listinfo/cgiapp ## ## ## ## Web archive: http://www.erlbaum.net/pipermail/cgiapp/ ## ## Wiki: http://cgiapp.erlbaum.net/ ## ## ## ################################################################
