Idea for security enhancements

Feb 18, 2012 at 10:21 PM
Edited Feb 18, 2012 at 10:28 PM

I'd like to see an extension that configures the following 

  •  CSRF Security tokens... perhaps auto configuration of this in the header

http://www.telerik.com/community/code-library/aspnet-mvc/grid/sending-antiforgerytoken-with-ajax-bound-grid.aspx


$.ajaxSetup({ data: { __RequestVerificationToken: $("input[name=__RequestVerificationToken]").val() } });

 

(By the way it's probably better to ensure that all AJAX request are all padded to the next multiple of 500 bytes as  mentioned in the links)

 

So, does any of this sound good for your Extended API?

Coordinator
Feb 27, 2012 at 3:48 AM

Thanks for the ideas!  Yes, I will definitely look into them.