Jia Huang
Reputation: 97
How and where do I store a CSRF token in React?
Where do I store the CSRF token in my React page? I read that it should be stored in a hidden input field, but then how do I access it? It seems like the only way to access it is by interacting with the DOM, which I was told to avoid doing when using React. I also read that it is safe to store CSRF tokens in React states. Wouldn't this make it vulnerable to XSS attacks?
Upvotes: 2
Views: 330
Answers (0)
Related Questions
- How to programmatically navigate using React Router?
- What is a CSRF token? What is its importance and how does it work?
- Where to store JWT in browser? How to protect against CSRF?
- How do I conditionally add attributes to React components?
- What is the difference between React Native and React?
- Why is it common to put CSRF prevention tokens in cookies?
- Is it safe to store a JWT in localStorage with ReactJS?
- React frontend and REST API, CSRF
- CSRF Token necessary when using Stateless(= Sessionless) Authentication?
- Synchronizer token pattern: How does it prevent combination of XSS and CSRF?