Is there a reason to put tokens on a search form?
Question
Let me first tell that I understand the concept of CSRF attacks. Now I wonder, are there benefits to placing tokens on a search form? I can't really think of anything myself.
Solution
The only benefit I can think of is potentially preventing denial of service attacks if your searches were extremely computationally expensive and required authentication.
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow