KB: 1059
How to prevent Cross-site Request Forgery through Haltdos WAF?
Problem Statement
Client wants prevent their sites by Cross-site Request Forgery attack.
Solution
Steps to Solve:-
The client can achieve the above requirement by configuring settings to prevent CSRF on Haltdos console.
- Login into Haltdos console.
- Go to Apps > WAF > Listener > Advance Bot > Configure settings for CSRF > Save Changes.
- Go to Apps > WAF > Listener > Profile > Profile default setting > Policy > Web Policy > Enable CSRF toggle > Save changes
By configuring above CSRF settings client can protect their sites from CSRF attack.