How should a DevOps engineer configure against Cross Site Request Forging attacks?
Posted: Thu Jul 21, 2022 9:09 pm
How should a DevOps engineer configure against Cross Site Request Forging attacks?
A. Create a filter to allow /libs/granite/csrf/token.json path and CSRF-Token header in dispatcher
B. Set Access-Control-Allow-Origin to wildcard
C. Send the proper X-Frame-Options HTTP response headers that instruct the browser to disallow framing from other domains
A. Create a filter to allow /libs/granite/csrf/token.json path and CSRF-Token header in dispatcher
B. Set Access-Control-Allow-Origin to wildcard
C. Send the proper X-Frame-Options HTTP response headers that instruct the browser to disallow framing from other domains