This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Talk:How CSRFGuard Works

Jump to: navigation, search

How does this affect certain standard browser navigation features? Specifically, does this break the "Back," "Forward," and "Reload/Refresh" buttons?

Also, I would assume that re-authentication would be necessary for bookmarked pages. Does it handle these well, or does it choke on an invalid (not blank) request token?