#web_security #cors #sop #csrf
Understanding Cross-Origin Resource Sharing is essential if you’re a web developer or want to understand the browser security model. Cross-origin Resource Sharing is a way to relax the SOP, Same Origin Policy, the security mechanism whereby browsers prevent Cross-Site Request Forgery, or CSRF.
In this video, what is CORS, and Why we need it?. You’ll understand how we can bypass the Same Origin Policy with CORS and how HTTP headers are used to customize CORS implementation.
-------- Video Outline --------
00:09 Browser functionalities and security model
01:07 CSRF attack -- Cross-Site Request Forgery
01:41 Same Origin Policy
02:13 What is an Origin
03:05 CSRF and SOP
04:03 Relaxing SOP
04:41 Introducing CORS
05:17 CORS implementation -- HTTP Headers
06:45 Preflight Request
07:19 CORS in Web Browsers vs CLI client
Resources to know more:
* developer.mozilla.org/en-US/d...
* owasp.org/www-project-web-sec...
Check out more of The TechCave Videos:
* • What is a VPN & How do... - What is a VPN and How does it work? VPNs Explained!
* • What is a Proxy Server... - What is a Proxy Server & How Does it work?
* • The Http and the Web |... - HTTP and The Web
* • APIs | REST | REST API... - REST APIs
* • What is DevOps | Under... - DevOps
* • Web Services - Demysti... - Web Services
* • Software Architecture ... - Software Architecture
Artwork and Illustration: Flaticon.com
Stay Tuned!
19 май 2021