![]() If at least one of them is invalid or expired then the server will respond with 403 Forbidden, with response header: X-CSRF-TOKEN: Required, with response body: “ CSRF Token required” The server will check this token and the session ID cookie(s) and if they’re valid and matching, it’ll process the request.Note, that $batch requests are always sent with POST method. *A modification request, is a non-GET request like POST, PUT, PATCH, MERGE, DELETE (CUD). ![]() When the session renews the CSRF token has to be renewed as well, by requesting a token again.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |