A
A
alex stephen2017-03-28 15:52:40
CSRF
alex stephen, 2017-03-28 15:52:40

How to test forms with CSRF?

There is a project on Yii2. All post requests are validated with a CSRF token. Accordingly, you can simply copy the headers and cookies into Fiddler or Postman, and you cannot execute a request on behalf of the user with them.
How can you test this part? Is it possible to somehow create a test script in the specified applications (for example: enter a login and password, go to page N, press a button ...)?

Answer the question

In order to leave comments, you need to log in

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question