Cross-Site Request Forgery (CSRF)

2.8 Cross-Site Request Forgery (CSRF)

This topic describes about Cross-Site Request Forgery (CSRF).

Oracle Banking Accounts services are stateless. Oracle Banking Accounts generates JWT upon successful authentication of the users. The generated token works to prevent CSRF.

Parent topic: How to address the OWASP Top10 in Oracle Banking Accounts