DunglasAngularCsrfBundle
Automatic CSRF protection for JavaScript apps using Symfony APIs via cookie-header validation.
What is DunglasAngularCsrfBundle?
DunglasAngularCsrfBundle is a Symfony bundle that automatically protects JavaScript applications from Cross-Site Request Forgery (CSRF) attacks when interacting with Symfony-based APIs. It implements a cookie-header validation mechanism where the server sets a CSRF token cookie and validates it against a corresponding HTTP header in subsequent requests. This approach secures API endpoints without requiring developers to manually handle tokens in their application logic.
Symfony developers building APIs consumed by JavaScript frontend applications who need robust CSRF protection with minimal code changes. It's particularly useful for projects using API Platform or FOSRestBundle.
Developers choose this bundle because it provides automatic, configuration-driven CSRF protection that works out-of-the-box with Symfony's event system, supports all major JavaScript frameworks, and integrates seamlessly with Symfony Form Component while requiring zero modifications to application code.
Overview
Automatic CSRF protection for JavaScript apps using a Symfony API
Use Cases
Best For
- Securing Symfony APIs consumed by Angular, React, or Vue.js applications
Related Projects
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
