Glossary coding Term Page

CSRF

An attack that tricks a logged-in browser into sending unintended requests

csrf #web#security#auth

Korean version

Aliases

Cross-Site Request Forgery

Prerequisites

Cookie Session

Related Concepts

Cookie Session Origin CORS

Core Idea

CSRF is an attack that abuses a browser's existing login state to send unintended requests on the user's behalf. It matters especially when browsers automatically attach cookies to state-changing requests.

Why It Matters Here

Mathbong uses CSRF when discussing cookie-based auth, origin checks, and safe state-changing APIs. It shows why "the browser sends it automatically" can become a security problem.

Posts Mentioning This Concept

[FastAPI 시리즈 1편] 왜 FastAPI를 써보려는가 빠른 개발 속도, 타입 힌트 기반 문서화, Python 생태계와의 연결을 중심으로 FastAPI의 장점을 정리합니다.[FastAPI Series 1] Why FastAPI Is Worth Learning Explains FastAPI's core advantages, the learning roadmap, and the mindset for this series.