Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Submitting a form with JS is a whole other level of complexity than just having a link out there in the wild that performs write operations. And using a CSRF defeats that stated intent.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: