all InfoSec news
csrf
March 28, 2023, 12:49 p.m. | /u/Mission-Audience-452
cybersecurity www.reddit.com
`.antMatchers(POST, "/api/v1/my-endpoint").permitAll()`
​
However this still results in a 401 response. I noticed when I disabled CSRF it works as desired: `http.csrf().disable().authorizeRequests()`
​
​
I have read opposing information on if disabling this is safe. Due to using JWT …
amp api authentication backend csrf cybersecurity disabled endpoint http information insight jwt jwt token jwt tokens okta response results safe security single spring spring security token tokens website
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Information Technology Specialist II: Network Architect
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Engineering Manager - Cloud Security team
@ SentinelOne | Prague, Czech Republic
Legal & Compliance Apprentice (H/F)
@ Novo Nordisk | Puteaux, Île-de-France, FR
Manager, Governance Risk & Compliance
@ Comcast | Virtual