NeilSpears Posted October 7, 2012 Report Share Posted October 7, 2012 I am learning the web api of utorrent. I have a question, how does token Authorization improve the security of web api ? All the web api requests use the http basic Authorization. And now every request should add the cookie string and the token string. How does this protect µTorrent users from CSRF ? Link to comment Share on other sites More sharing options...
Ultima Posted October 24, 2012 Report Share Posted October 24, 2012 http://forum.utorrent.com/viewtopic.php?id=58111By requiring a unique key that only WebUI clients know about as part of the request GET arguments list, arbitrary websites can't just make up fake links that control WebUI. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.