feat: add csrf

2026-04-19 11:32:47 +03:00
parent 17855ecd87
commit 517df542e1
9 changed files with 4827 additions and 8 deletions
--- a/.env.example
+++ b/.env.example
@@ -22,8 +22,10 @@ VAULT_MOUNT_POINT=dev-secrets
 VAULT_SECRET_PATH=database
 VAULT_JWT_KID_PATH=jwt/kid
 VAULT_JWT_KIDS_PREFIX=jwt/kids
+VAULT_CSRF_SECRET_PATH=cryptowallet/csrf

-# CSRF
+# CSRF (min 32 chars if not using Vault CSRF path)
+CSRF_SECRET_KEY=change-me-to-at-least-32-chars-long!!
 CSRF_COOKIE_SECURE=false
 CSRF_COOKIE_HTTPONLY=true
 CSRF_COOKIE_SAMESITE=Lax