CSRF Protection Episode 1. Synchronizer Token Pattern

Munsif Musthafa
Oct 7, 2018 · 4 min read

Introduction

Flow of Events of Synchronizer Token Pattern

Flow of Events of Synchronizer Token Pattern

Flow of events

Why is this secure?

Example Implementation

Login page
Homepage with the state changing operation
login.html
MainController.java
AuthenticationService.java
home.html
main.js

Munsif Musthafa

Written by

Tech Enthusiast. Undergrad. Living in Moderation

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade