Skip to content

graphql-http vulnerable to CSRF attack #80

Description

@fr4nco1s

Hi,

graphql-http seems to be vulnerable to CSRF attack.

Is it planed to implement an anti-CSRF system, like tokens management on GraphQL endpoints ?

Metadata

Metadata

Assignees

No one assigned

    Labels

    questionFurther information is requested

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions