Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Flask Framework Cookbook Over 80 proven recipes and techniques for Python web development with Flask

Product type Paperback

Published in Jul 2019

Publisher

ISBN-13 9781789951295

Length 302 pages

Edition 2nd Edition

Languages

Python

Tools

Flask

Concepts

Full Stack Web Development

Author (1):

Shalabh Aggarwal

View More author details

Table of Contents (15) Chapters

Preface

1. Flask Configurations FREE CHAPTER

2. Templating with Jinja2

3. Data Modeling in Flask

4. Working with Views

5. Webforms with WTForms

6. Authenticating in Flask

7. RESTful API Building

8. Admin Interface for Flask Apps

9. Internationalization and Localization

10. Debugging, Error Handling, and Testing

11. Deployment and Post-Deployment

12. Microservices and Containers

13. Other Tips and Tricks

14. Other Books You May Enjoy

Leave a review - let other readers know what you think

Protecting applications from cross-site request forgery (CSRF)

In the first recipe of this chapter, we learned that CSRF is an important part of webform security. We will now talk about this in detail. CSRF basically means that someone can hack into the request that carries a cookie and use this to trigger a destructive action. We won't be discussing CSRF in detail here, since ample resources are available on the internet to learn about this. We will talk about how WTForms will help us in preventing CSRF. Flask does not provide any security against CSRF by default, as this has to be handled at the form-validation level, which is not provided by Flask. However, in this recipe, we will see how this is done for us by means of the Flask-WTF extension.

More information about CSRF can be found at https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF).

...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Shalabh Aggarwal

Shalabh Aggarwal is a seasoned engineering leader who develops and manages enterprise systems and web and mobile applications for small- and large-scale organizations. He started his career working with Python, and although he now works on multiple technologies, he remains a Python developer at heart. He is passionate about open source technologies and writes highly readable and high-quality code. Throughout his career, he has built software products and engineering teams for companies moving from 0 to 1, 1 to 10, and 10 to 100 levels. He is also active in voluntary training for engineering students and young engineers on non-conventional and open source topics. When not working with full-time assignments, he consults for start-ups on starting or scaling up while leveraging different technologies. When not writing code, he dedicates his time to his young kid and occasional travels.

See other products by Shalabh Aggarwal