Re: Re: Rest API v.2 developer credentials
Aldevinas Katkus
10-17-17
Thanks for the answer. One more question:
is there any CSRF protection implemented in the Rest API?
The CSRF (Cross Site Request Forgery) problem with OAuth is described here https://security.stackexchange.com/a/57886
It looks like the 'state' param is not sent back to the redirect_url. Quote
"The authorization code is issued and sent back to the client in your session along with the state parameter"
I was testing OAuth with this http://oauth2-client.thephpleague.com/usage/
Reply
Leave Comment
You can subscribe to notifications for this post by selecting the 'star' icon on the top right corner of the post.
Latest Posts
*GATE* does't work after upgrade to v. 2026-01-26 1335
Piotr Wycichowski
Hi, I need very quick support. We've just upgaraded our SERP from version 250507/85558691 to 260126/85561335 (on Mac server). When server process was started, the folder EmailGateway was autom...
08:56 10 Mar 2026
Re: Re: App Message on new version
Hi Bror-Erik, Thanks for your reply. We've done further testing and we've discovered that it is only my Windows 11 laptop that has this message about downloading components. Other coll...
12:04 27 Feb 2026