Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
alex stephen2017-03-28 15:52:40
CSRF
alex stephen, 2017-03-28 15:52:40

How to test forms with CSRF?

There is a project on Yii2. All post requests are validated with a CSRF token. Accordingly, you can simply copy the headers and cookies into Fiddler or Postman, and you cannot execute a request on behalf of the user with them.
How can you test this part? Is it possible to somehow create a test script in the specified applications (for example: enter a login and password, go to page N, press a button ...)?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
E
Eduard Tsakhlo2017-10-06 19:43:05
How to compose this https request so that the status code is 200/302? 1Reply
A
alex stephen2017-10-31 10:23:35
How to make csrf form protection on a third-party resource? 2Reply
S
SHentai2017-11-01 10:51:12
How to enter the site using XSRF-TOKEN? 1Reply
L
lamzin2020-03-19 14:41:34
Do I need a csrf token in forms in sections of the site that are inaccessible to unauthorized users? 1Reply
J
jenya77712017-12-15 12:13:15
Do you need CSRF protection in the API? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question