Re: Re: Rest API v.2 developer credentials
Aldevinas Katkus
10-17-17
Thanks for the answer. One more question:
is there any CSRF protection implemented in the Rest API?
The CSRF (Cross Site Request Forgery) problem with OAuth is described here https://security.stackexchange.com/a/57886
It looks like the 'state' param is not sent back to the redirect_url. Quote
"The authorization code is issued and sent back to the client in your session along with the state parameter"
I was testing OAuth with this http://oauth2-client.thephpleague.com/usage/
Reply
Leave Comment
You can subscribe to notifications for this post by selecting the 'star' icon on the top right corner of the post.
Latest Posts
Re: Loss on Exchanges currency is Base Currency 2
ABS Support
Hello team . I wanted to find out if this bug was fixed because i can see it on the latest version Standard ERP 2025-08-11 Version: 85559519 Country: South Africa...
09:22 18 Sep 2025
Received External E-mail without proper attachments
Piotr Wycichowski
Hi, Some incoiming external e-mails, like invitation for scheduled Zoom meeting, comes with special attachement .ics to create an event in calendars. When such e-mail is received by SERP mail syste...
15:43 12 Sep 2025