Is it necessary to add CSRF tokens for REST API? [duplicate]

Ask Question

Asked 10 years, 5 months ago

Modified 10 years, 5 months ago

Viewed 214 times

I have a few REST APIs for an iPhone app. It has a login and session management functionality. Currently the session has been tracked by a token set during login.

Are REST services affected by CSRF attacks? Is it necessary to implement CSRF token along with my application? We believe in enhanced security. I just wanted to know whether adding a CSRF token has anything to do with the API security.

edited Jun 29, 2015 at 9:57

S.L. Barth is on codidact.com

5,5348 gold badges42 silver badges47 bronze badges

asked Jun 29, 2015 at 7:34

Anonymous Platypus

1,4723 gold badges21 silver badges39 bronze badges

Add a comment |

0

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.

Stack Exchange Network

Is it necessary to add CSRF tokens for REST API? [duplicate]

0

Linked

Hot Network Questions

Is it necessary to add CSRF tokens for REST API? [duplicate]

0

Linked

Related

Hot Network Questions