module Lucky::ProtectFromForgery

Overview

Protect from CSRF attacks

This module is automatically included in BrowserAction to protect from CSRF attacks.

Included Modules

• Habitat::SettingsHelpers
• Habitat::TempConfig

Defined in:

lucky/protect_from_forgery.cr

Constant Summary

ALLOWED_METHODS = ["GET", "HEAD", "OPTIONS", "TRACE"] of ::String

HABITAT_SETTINGS = [{decl: allow_forgery_protection : Bool = true, example: nil, validation: nil}] of Nil

PARAM_KEY = "_csrf"

SESSION_KEY = "X-CSRF-TOKEN"

Class Method Summary

• .configure(&)
• .settings

Instance Method Summary

• #settings

Class Method Detail

Instance Method Detail