1 Risposta
- Più recenti
- Maggior numero di voti
- Maggior numero di commenti
0
Hello.
AWS WAF can be configured for API Gateway and CloudFront.
So I think it is possible to add CSRF protection with AWS WAF.
https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-control-access-aws-waf.html
I need help with implementation and validation of CSRF token. I am aware of WAF but to enable it my application must be generating and injecting CSRF token, right?