j0lvera / next-csrf Public

Notifications You must be signed in to change notification settings
Fork 22
Star 140

Code
Issues 12
Pull requests 18
Discussions
Actions
Projects
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

Issues: j0lvera/next-csrf

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

12 Open 17 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Assignee

Filter by who’s assigned

Assigned to nobody

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Issues list

Why is CSRF_SECRET exposed to client?

#72 opened Nov 4, 2024 by fmendezpfister

Missing HttpOnly Cookies with setup() Wrapper Usage

#71 opened Mar 6, 2024 by xereda

Next.js v13

#69 opened May 23, 2023 by MaximKing1

Failed to read secret cookie in setup function

#67 opened Apr 25, 2023 by tochoromero

Keep original args of handler so we have access to the context enhancement

New feature or request

good first issue

Good for newcomers

help wanted

Extra attention is needed

#58 opened Dec 13, 2022 by rduque1

Issues on live server

#51 opened Oct 20, 2022 by vampiregrodon

The implementation probably defeats the purpose of CSRF protection bug

Something isn't working

#49 opened Jul 17, 2022 by sha256 v1

Pass context back to GetServerProps handler

#48 opened Jul 4, 2022 by al-bimani

Explain in the documentation when you need CSRF mitigation. Not every project needs it documentation

Improvements or additions to documentation

#28 opened Sep 22, 2021 by j0lvera

Explain in the documentation why exposing an API route to set up the CSRF token is a bad idea documentation

Improvements or additions to documentation

#27 opened Sep 22, 2021 by j0lvera

Env variable cant load on browser

#25 opened Aug 20, 2021 by vedrane

Explain implementation documentation

Improvements or additions to documentation

#2 opened Jun 29, 2020 by j0lvera

ProTip! Updated in the last three days: updated:>2024-11-04.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly