Skip to content

[Security] Enable and enforce CSRF protection across all POST routes #427

Open
#447
Open
[Security] Enable and enforce CSRF protection across all POST routes#427
#447
Assignees
Tech4Aditya
Labels
GSSoC'26GirlScript Summer of Code 2026 (GSSoC'26)
@Tech4Aditya

Description

@Tech4Aditya
Tech4Aditya
opened on May 20, 2026

-Enable Flask-WTF CSRF
-Add tokens to forms
-Handle AJAX requests properly
-Add CSRF error handler

current csrf is not enabled and will lead to security errors

Metadata

Metadata

Assignees

Labels

GSSoC'26GirlScript Summer of Code 2026 (GSSoC'26)

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions