csurf - CSRF token middleware

  •        156

Node.js CSRF protection middleware. Requires either a session middleware or cookie-parser to be initialized first.

https://github.com/expressjs/csurf

Dependencies:

cookie : 0.3.1
cookie-signature : 1.0.6
csrf : ~3.0.6
http-errors : ~1.6.2

Tags
Implementation
License
Platform

   




Related Projects

express-gateway - A microservices API Gateway built on top of ExpressJS

  •    Javascript

Express Gateway is an API Gateway that sits at the heart of any microservices architecture, regardless of what language or platform you're using. Express Gateway secures your microservices and exposes them through APIs using Node.js, ExpressJS and Express middleware. Developing microservices, orchestrating and managing them now can be done insanely fast all on one seamless platform without having to introduce additional infrastructure. Express Gateway is commerically supported LunchBadger. For more information about support plans please contact info@express-gateway.io.

method-override - Override HTTP verbs.

  •    Javascript

Lets you use HTTP verbs such as PUT or DELETE in places where the client doesn't support it. NOTE It is very important that this module is used before any module that needs to know the method of the request (for example, it must be used prior to the csurf module).

cookie-session - Simple cookie-based session middleware

  •    Javascript

Simple cookie-based session middleware. A user session can be stored in two main ways with cookies: on the server or on the client. This module stores the session data on the client within a cookie, while a module like express-session stores only a session identifier on the client within a cookie and stores the session data on the server, typically in a database.

cors - Node.js CORS middleware

  •    Javascript

CORS is a node.js package for providing a Connect/Express middleware that can be used to enable CORS with various options. For details on the effect of each CORS header, read this article on HTML5 Rocks.

serve-favicon - favicon serving middleware

  •    Javascript

Node.js middleware for serving a favicon. A favicon is a visual cue that client software, like browsers, use to identify a site. For an example and more information, please visit the Wikipedia article on favicons.


session - Simple session middleware for Express

  •    Javascript

Create a session middleware with the given options. Note Session data is not saved in the cookie itself, just the session ID. Session data is stored server-side.

compression - Node.js compression middleware

  •    Javascript

Node.js compression middleware. Returns the compression middleware using the given options. The middleware will attempt to compress response bodies for all request that traverse through the middleware, based on the given options.

body-parser - Node.js body parsing middleware

  •    Javascript

Node.js body parsing middleware. Parse incoming request bodies in a middleware before your handlers, available under the req.body property.

Polka - A micro web server so fast, it'll make you dance!

  •    Javascript

Polka is an extremely minimal, highly performant Express.js alternative. Polka is just a native HTTP server with added support for routing, middleware, and sub-applications. That's it! It is 33-50% faster than Express for simple applications.

express-jwt-permissions - :vertical_traffic_light: Express middleware for JWT permissions

  •    Javascript

Middleware that checks JWT tokens for permissions, recommended to be used in conjunction with express-jwt. This middleware assumes you already have a JWT authentication middleware such as express-jwt.

serve-static - Serve static files

  •    Javascript

Create a new middleware function to serve files from within a given root directory. The file to serve will be determined by combining req.url with the provided root directory. When a file is not found, instead of sending a 404 response, this module will instead call next() to move on to the next middleware, allowing for stacking and fall-backs. Enable or disable accepting ranged requests, defaults to true. Disabling this will not send Accept-Ranges and ignore the contents of the Range request header.

vhost - virtual domain hosting

  •    Javascript

Create a new middleware function to hand off request to handle when the incoming host for the request matches hostname. The function is called as handle(req, res, next), like a standard middleware. hostname can be a string or a RegExp object. When hostname is a string it can contain * to match 1 or more characters in that section of the hostname. When hostname is a RegExp, it will be forced to case-insensitive (since hostnames are) and will be forced to match based on the start and end of the hostname.

opine - Fast, minimalist web framework for Deno ported from ExpressJS.

  •    TypeScript

Fast, minimalist web framework for Deno ported from ExpressJS. This is a Deno module available to import direct from this repo and via the Deno Registry.

vue-express-mongo-boilerplate - :star: MEVN Full stack JS web app boilerplate with NodeJS, Express, Mongo and VueJS

  •    Javascript

This is a full stack webapp boilerplate project with VueJS + ExpressJS + MongoDB. It is NOT an out-of-box project. I make it in order to create an up-to-date starter repo which contains all important functions (user signup, login, oauth, profile, ...etc) except the business-logic. So when neccessary I can create a new webapp and only need to develop the business logic.

grow-to-express - 渐进式Express学习课程,从零开始实现一个Express

  •    Javascript

渐进式Express学习课程,从零开始实现一个Express

cookie-parser - Parse HTTP request cookies

  •    Javascript

Parse Cookie header and populate req.cookies with an object keyed by the cookie names. Optionally you may enable signed cookie support by passing a secret string, which assigns req.secret so it may be used by other middleware. Parse a cookie value as a JSON cookie. This will return the parsed JSON value if it was a JSON cookie, otherwise it will return the passed value.

express-app-example - How I structure Express Apps (example repo)

  •    Javascript

This gives a basic idea of the dev and build tools and scripts I use for my medium sized node apps. For small apps, I'd probably follow the same tooling setup, but I'd put everything in a single file.

builderbook - Open-source web app. Built with React, Material-UI, Next, Express, Mongoose, MongoDB.

  •    Javascript

Builder Book is an open source web app to publish documentation or books. The app is built with React/Material-UI/Next/Express/Mongoose/MongoDB and includes these third party APIs: Google, Github, AWS SES, Mailchimp, Stripe. We've used this builderbook project to build saas, async, and other real-world web apps.

RailwayJS - MVC framework for NodeJS

  •    NodeJS

Railway is the Node.JS MVC framework based on ExpressJS, fully ExpressJS-compatible. It allows you to build web applications in a similar manner as in Ruby On Rails. It has generators for model, controller, scaffold and supports coffee scripts.

openKB - Open Source Nodejs Markdown based knowledge base (FAQ) app

  •    Javascript

openKB is a Markdown Knowledge base application (FAQ) built with Nodejs and ExpressJS. The application uses an embedded database (nedb) by default but can also use a MongoDB server by changing the config (see below). The application is designed to be easy to use and install and based around search rather than nested categories. Simply search for what you want and select from the results. Note: openKB supports Nodejs version 4.0 and above.






We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.