Which two techniques can be used to protecta storefront POST action against Cross Site Request Forgery (CSRF) attacks? (Choose two.)

AD0-E709 0 Comments

Which two techniques can be used to protecta storefront POST action against Cross Site Request Forgery (CSRF) attacks? (Choose two.)
A . The form sending data to that action needs to include a fornjtey parameter with a valid form key and the action must instantiateManentoFramworkDataForumKeyFormkeyValidator validate it.
B . The action needs to implement MgentoFrameworkAppCSrfAwareActioninterface and include the validateForCsrf method implementing the actual protection logic.
C . The form sending data to that action needs to include a form_key parameter with a valid form key which will automatically be used in a built-in CSRF validation.
D . The action needs to implement
MagentoFrameworkAppActionvHttpPosTActioninterface to trigger built-in CSRF
validation.

Answer: B,D

Latest AD0-E709 Dumps Valid Version with 135 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download AD0-E709 PDF     AD0-E709 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments