Actix-web: CSRF middleware for actix-web 1.0

Created on 28 Nov 2019  路  9Comments  路  Source: actix/actix-web

Where is the CSRF middleware for actix-web 1.0?

picture tommket

All 9 comments

It wasn鈥檛 ported.

fafhrd91 picture fafhrd91 on 29 Nov 2019
😕2

Is there any chance of https://github.com/SnoozeTime/actix-csrf getting some more support?

tommket picture tommket on 29 Nov 2019

@tommket what do you mean with support ? You can ask the author https://github.com/SnoozeTime if you're missing any features.

0xpr03 picture 0xpr03 on 30 Nov 2019

@0xpr03 I mean if it could become one of the other actix-... crates the same way the other middleware crates got created and continually maintained?
There is an open issue https://github.com/SnoozeTime/actix-csrf/issues/1 where the author recently stated that he is waiting for someone sufficiently knowledgeable in actix and rust to review his code, before he is willing to release it as a crate. So pls anyone contributing to actix-... code and willing to review it would be welcome.

tommket picture tommket on 2 Dec 2019

Just as a note: I'm using the SameSite attribute as CSRF prevention.

0xpr03 picture 0xpr03 on 2 Dec 2019

@0xpr03 Yes I read about that too, but that does not help with subdomains.

tommket picture tommket on 2 Dec 2019
😕2

i guess there is nothing to do in actix-web repo

fafhrd91 picture fafhrd91 on 5 Dec 2019
👀3

@tommket I'd recommend to ask in the actix Gitter chat and see if you'll find some people to help you with this project.

0xpr03 picture 0xpr03 on 6 Dec 2019

Does anyone know why it was removed?

TrustTheRust picture TrustTheRust on 22 Dec 2019
Was this page helpful?
0 / 5 - 0 ratings

Related issues

alex picture alex  路  4Comments
cheolgyu picture cheolgyu  路  3Comments
kocoten1992 picture kocoten1992  路  3Comments
naturallymitchell picture naturallymitchell  路  4Comments
yoshrc picture yoshrc  路  5Comments