Mitigate CSRF Attacks by Setting the SameSite Cookie Flag in Express

InstructorMike Sherov

Share this video with your friends

Send Tweet

In this lesson, we'll learn what the SameSite cookie flag is, what it’s various settings are, and how it can be used to prevent most forms of CSRF vulnerabilities. We'll then demonstrate how it protects against the exploit we crafted in the previous lesson.