csrf-middleware@0.1.0
📦 remixView on GitHub →
✨ 4 features🔧 4 symbols
Summary
This release introduces the initial version of @remix-run/csrf-middleware, providing session-backed CSRF protection utilities for Remix applications. It also includes dependency bumps for related packages.
✨ New Features
- Initial release of @remix-run/csrf-middleware.
- Exposed csrf(options) and getCsrfToken(context) for session-backed CSRF protection in Remix apps accepting unsafe form submissions.
- Implemented validation of a per-session token combined with request origin metadata, supporting token transport via headers, form data, and query parameters.
- Enabled layering of csrf() after cop() for stricter token-backed protection layered over browser-origin filtering.