I want to include the CSRF token in the layout to make it globally accessible for my javascript code:
. . .
<body data-token="">
. . .
Is this approach a good pratice, or will it introduce any security holes / other problems?
via Chebli Mohamed
Aucun commentaire:
Enregistrer un commentaire