Hacker News new | ask | show | jobs
by eli 179 days ago
I don’t think CSRF has anything to do with those?
1 comments
paulryanrogers 178 days ago
The endpoints serving those links can't be protected as well. Unless they serve a form that posts, which may not be legal if it requires extra clicks
link