One doc tagged with "CSP"

CSRF defenses (SameSite, antiforgery tokens) for cookie-based authentication, and Content Security Policy (CSP) as defense-in-depth against XSS