{"id":103654,"date":"2025-03-29T09:34:48","date_gmt":"2025-03-29T05:04:48","guid":{"rendered":"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/"},"modified":"2025-03-29T09:34:48","modified_gmt":"2025-03-29T05:04:48","slug":"%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa","status":"publish","type":"post","link":"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/","title":{"rendered":"\u0686\u06af\u0648\u0646\u0647 \u0645\u06cc \u062a\u0648\u0627\u0646 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc Node.js \u0631\u0627 \u0627\u0632 CSRF \u0645\u062d\u0627\u0641\u0638\u062a \u06a9\u0631\u062f\u061f"},"content":{"rendered":"<div data-article-id=\"2357034\" id=\"article-body\">\n<p>\u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0645\u062a\u0642\u0627\u0637\u0639 \u062c\u0639\u0644\u06cc (CSRF) \u06cc\u06a9\u06cc \u0627\u0632 \u0628\u062f\u0646\u0627\u0645 \u062a\u0631\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627\u06cc \u0648\u0628 \u0627\u0633\u062a \u06a9\u0647 \u062a\u0648\u0633\u0639\u0647 \u062f\u0647\u0646\u062f\u06af\u0627\u0646 \u0628\u0627\u06cc\u062f \u0627\u0632 \u0622\u0646 \u062f\u0641\u0627\u0639 \u06a9\u0646\u0646\u062f. \u0627\u06cc\u0646 \u062d\u0645\u0644\u0647 \u06cc\u06a9 \u06a9\u0627\u0631\u0628\u0631 \u0645\u0639\u062a\u0628\u0631 \u0631\u0627 \u062f\u0631 \u0627\u0646\u062c\u0627\u0645 \u0646\u0627\u0622\u06af\u0627\u0647\u0627\u0646\u0647 \u0627\u0642\u062f\u0627\u0645\u0627\u062a \u0646\u0627\u062e\u0648\u0627\u0633\u062a\u0647 \u062f\u0631 \u06cc\u06a9 \u0628\u0631\u0646\u0627\u0645\u0647 \u0648\u0628 \u0641\u0631\u06cc\u0628 \u0645\u06cc \u062f\u0647\u062f. \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644 \u060c \u06cc\u06a9 \u0648\u0628 \u0633\u0627\u06cc\u062a \u0645\u062e\u0631\u0628 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u06cc\u06a9 \u06a9\u0627\u0631\u0628\u0631 \u0648\u0627\u0631\u062f \u0634\u062f\u0647 \u0631\u0627 \u0648\u0627\u062f\u0627\u0631 \u06a9\u0646\u062f \u062a\u0627 \u0622\u062f\u0631\u0633 \u0627\u06cc\u0645\u06cc\u0644 \u062e\u0648\u062f \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u062f \u06cc\u0627 \u0628\u062f\u0648\u0646 \u0631\u0636\u0627\u06cc\u062a \u0622\u0646\u0647\u0627 \u0648\u062c\u0648\u0647 \u062e\u0648\u062f \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u062f.  <\/p>\n<p>\u0627\u0632 \u0622\u0646\u062c\u0627 \u06a9\u0647 node.js \u0628\u0647 \u0637\u0648\u0631 \u06af\u0633\u062a\u0631\u062f\u0647 \u0627\u06cc \u0628\u0631\u0627\u06cc \u0633\u0627\u062e\u062a\u0646 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u0648\u0628 \u0645\u0642\u06cc\u0627\u0633 \u067e\u0630\u06cc\u0631 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f \u060c \u062f\u0631\u06a9 \u0686\u06af\u0648\u0646\u06af\u06cc \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0622\u0646\u0647\u0627 \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u062d\u0645\u0644\u0627\u062a CSRF \u0628\u0633\u06cc\u0627\u0631 \u0645\u0647\u0645 \u0627\u0633\u062a. <\/p>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter-rtl ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">\u0641\u0647\u0631\u0633\u062a \u0645\u0637\u0627\u0644\u0628<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#%D8%AF%D8%B1%DA%A9_%D8%AD%D9%85%D9%84%D8%A7%D8%AA_CSRF\" >\u062f\u0631\u06a9 \u062d\u0645\u0644\u0627\u062a CSRF<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#CSRF_%DA%86%DA%AF%D9%88%D9%86%D9%87_%DA%A9%D8%A7%D8%B1_%D9%85%DB%8C_%DA%A9%D9%86%D8%AF%D8%9F\" >CSRF \u0686\u06af\u0648\u0646\u0647 \u06a9\u0627\u0631 \u0645\u06cc \u06a9\u0646\u062f\u061f<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#%D9%86%D9%85%D9%88%D9%86%D9%87_%D8%A7%DB%8C_%D8%A7%D8%B2_%D8%AD%D9%85%D9%84%D9%87_CSRF\" >\u0646\u0645\u0648\u0646\u0647 \u0627\u06cc \u0627\u0632 \u062d\u0645\u0644\u0647 CSRF<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#%D9%86%D8%AD%D9%88%D9%87_%D9%85%D8%AD%D8%A7%D9%81%D8%B8%D8%AA_%D8%A7%D8%B2_%D8%A8%D8%B1%D9%86%D8%A7%D9%85%D9%87_%D9%87%D8%A7%DB%8C_Nodejs_%D8%A7%D8%B2_CSRF\" >\u0646\u062d\u0648\u0647 \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc Node.js \u0627\u0632 CSRF<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#1_%D8%A7%D8%B2_%D9%86%D8%B4%D8%A7%D9%86%D9%87_%D9%87%D8%A7%DB%8C_CSRF_%D8%A7%D8%B3%D8%AA%D9%81%D8%A7%D8%AF%D9%87_%DA%A9%D9%86%DB%8C%D8%AF\" >1. \u0627\u0632 \u0646\u0634\u0627\u0646\u0647 \u0647\u0627\u06cc CSRF \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#%D9%86%D8%AD%D9%88%D9%87_%D8%A7%D8%AC%D8%B1%D8%A7%DB%8C_%D9%86%D8%B4%D8%A7%D9%86%D9%87_%D9%87%D8%A7%DB%8C_CSRF_%D8%AF%D8%B1_Nodejs\" >\u0646\u062d\u0648\u0647 \u0627\u062c\u0631\u0627\u06cc \u0646\u0634\u0627\u0646\u0647 \u0647\u0627\u06cc CSRF \u062f\u0631 Node.js<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#%D9%85%D8%B1%D8%AD%D9%84%D9%87_1_%D9%86%D8%B5%D8%A8_%DA%A9%D9%86%DB%8C%D8%AF_csurf_%D8%B8%D8%B1%D9%88%D9%81_%D9%85%DB%8C%D8%A7%D9%86%D8%A8%D8%B1\" >\u0645\u0631\u062d\u0644\u0647 1: \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f csurf \u0638\u0631\u0648\u0641 \u0645\u06cc\u0627\u0646\u0628\u0631<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#%D9%85%D8%B1%D8%AD%D9%84%D9%87_2_%D9%BE%DB%8C%DA%A9%D8%B1%D8%A8%D9%86%D8%AF%DB%8C_csurf_%D8%AF%D8%B1_expressjs\" >\u0645\u0631\u062d\u0644\u0647 2: \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc csurf \u062f\u0631 express.js<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#2_%D8%A7%D8%B2_%DA%A9%D9%88%DA%A9%DB%8C_%D9%87%D8%A7%DB%8C_Samesite_%D8%A7%D8%B3%D8%AA%D9%81%D8%A7%D8%AF%D9%87_%DA%A9%D9%86%DB%8C%D8%AF\" >2. \u0627\u0632 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc Samesite \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#3_%D8%A7%D8%B2_%DA%A9%D9%88%DA%A9%DB%8C_%D9%87%D8%A7%DB%8C_%D8%A7%DB%8C%D9%85%D9%86_%D9%88_httponly_%D8%A7%D8%B3%D8%AA%D9%81%D8%A7%D8%AF%D9%87_%DA%A9%D9%86%DB%8C%D8%AF\" >3. \u0627\u0632 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc \u0627\u06cc\u0645\u0646 \u0648 httponly \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#4\" >4<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#5_%D8%A8%D8%B1%D8%A7%DB%8C_%D8%A7%D9%82%D8%AF%D8%A7%D9%85%D8%A7%D8%AA_%D8%AD%D8%B3%D8%A7%D8%B3_%D8%A8%D9%87_%D8%AA%D8%A3%DB%8C%DB%8C%D8%AF_%D8%A7%D8%B9%D8%AA%D8%A8%D8%A7%D8%B1_%D9%86%DB%8C%D8%A7%D8%B2_%D8%AF%D8%A7%D8%B1%DB%8C%D8%AF\" >5. \u0628\u0631\u0627\u06cc \u0627\u0642\u062f\u0627\u0645\u0627\u062a \u062d\u0633\u0627\u0633 \u0628\u0647 \u062a\u0623\u06cc\u06cc\u062f \u0627\u0639\u062a\u0628\u0627\u0631 \u0646\u06cc\u0627\u0632 \u062f\u0627\u0631\u06cc\u062f<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#6_CAPTCHA_%D8%B1%D8%A7_%D8%A8%D8%B1%D8%A7%DB%8C_%D8%AF%D8%B1%D8%AE%D9%88%D8%A7%D8%B3%D8%AA_%D9%87%D8%A7%DB%8C_%D9%85%D9%87%D9%85_%D9%BE%DB%8C%D8%A7%D8%AF%D9%87_%D8%B3%D8%A7%D8%B2%DB%8C_%DA%A9%D9%86%DB%8C%D8%AF\" >6. CAPTCHA \u0631\u0627 \u0628\u0631\u0627\u06cc \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u0645\u0647\u0645 \u067e\u06cc\u0627\u062f\u0647 \u0633\u0627\u0632\u06cc \u06a9\u0646\u06cc\u062f<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#7_%D8%A7%D8%B2_%D9%85%D8%AD%D8%AF%D9%88%D8%AF_%DA%A9%D8%B1%D8%AF%D9%86_%D9%86%D8%B1%D8%AE_API_%D8%A7%D8%B3%D8%AA%D9%81%D8%A7%D8%AF%D9%87_%DA%A9%D9%86%DB%8C%D8%AF\" >7. \u0627\u0632 \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u0646\u0631\u062e API \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-15\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#%D9%BE%D8%A7%DB%8C%D8%A7%D9%86\" >\u067e\u0627\u06cc\u0627\u0646<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-16\" href=\"https:\/\/nabfollower.com\/blog\/%da%86%da%af%d9%88%d9%86%d9%87-%d9%85%db%8c-%d8%aa%d9%88%d8%a7%d9%86-%d8%a8%d8%b1%d9%86%d8%a7%d9%85%d9%87-%d9%87%d8%a7%db%8c-node-js-%d8%b1%d8%a7-%d8%a7%d8%b2-csrf-%d9%85%d8%ad%d8%a7%d9%81%d8%b8%d8%aa\/#%D8%B4%D9%85%D8%A7_%D9%87%D9%85%DA%86%D9%86%DB%8C%D9%86_%D9%85%D9%85%DA%A9%D9%86_%D8%A7%D8%B3%D8%AA_%D8%AF%D9%88%D8%B3%D8%AA_%D8%AF%D8%A7%D8%B4%D8%AA%D9%87_%D8%A8%D8%A7%D8%B4%DB%8C%D8%AF\" >\u0634\u0645\u0627 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0645\u0645\u06a9\u0646 \u0627\u0633\u062a \u062f\u0648\u0633\u062a \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f:<\/a><\/li><\/ul><\/nav><\/div>\n<h2><span class=\"ez-toc-section\" id=\"%D8%AF%D8%B1%DA%A9_%D8%AD%D9%85%D9%84%D8%A7%D8%AA_CSRF\"><\/span>\n<p>  \u062f\u0631\u06a9 \u062d\u0645\u0644\u0627\u062a CSRF<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"CSRF_%DA%86%DA%AF%D9%88%D9%86%D9%87_%DA%A9%D8%A7%D8%B1_%D9%85%DB%8C_%DA%A9%D9%86%D8%AF%D8%9F\"><\/span>\n<p>  CSRF \u0686\u06af\u0648\u0646\u0647 \u06a9\u0627\u0631 \u0645\u06cc \u06a9\u0646\u062f\u061f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u06cc\u06a9 \u062d\u0645\u0644\u0647 CSRF \u0627\u0632 \u0627\u0639\u062a\u0645\u0627\u062f \u06a9\u0647 \u06cc\u06a9 \u0628\u0631\u0646\u0627\u0645\u0647 \u0648\u0628 \u062f\u0631 \u062c\u0644\u0633\u0647 \u0645\u0631\u0648\u0631\u06af\u0631 \u06a9\u0627\u0631\u0628\u0631 \u062f\u0627\u0631\u062f \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u06a9\u0646\u062f. \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 \u0645\u0639\u0645\u0648\u0644\u06cc \u06cc\u06a9 \u062d\u0645\u0644\u0647 CSRF:  <\/p>\n<ol>\n<li>\u06a9\u0627\u0631\u0628\u0631 \u0648\u0627\u0631\u062f \u06cc\u06a9 \u0648\u0628 \u0633\u0627\u06cc\u062a \u0645\u06cc \u0634\u0648\u062f \u0648 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u06a9\u0648\u06a9\u06cc \u0647\u0627 \u06cc\u0627 \u0646\u0634\u0627\u0646\u0647 \u0647\u0627\u06cc \u062c\u0644\u0633\u0647 \u062a\u0623\u06cc\u06cc\u062f \u0645\u06cc \u0634\u0648\u062f.  <\/li>\n<li>\u06a9\u0627\u0631\u0628\u0631 \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 \u0647\u0646\u0648\u0632 \u0648\u0627\u0631\u062f \u0633\u0627\u06cc\u062a \u0645\u0634\u0631\u0648\u0639\u06cc\u062a \u0645\u06cc \u0634\u0648\u062f \u060c \u0627\u0632 \u06cc\u06a9 \u0648\u0628 \u0633\u0627\u06cc\u062a \u0645\u062e\u0631\u0628 \u0628\u0627\u0632\u062f\u06cc\u062f \u0645\u06cc \u06a9\u0646\u062f.  <\/li>\n<li>\u0648\u0628 \u0633\u0627\u06cc\u062a \u0645\u062e\u0631\u0628 \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u062c\u0644\u0633\u0647 \u062a\u0623\u06cc\u06cc\u062f \u0634\u062f\u0647 \u0642\u0631\u0628\u0627\u0646\u06cc \u060c \u062f\u0631\u062e\u0648\u0627\u0633\u062a\u06cc \u0631\u0627 \u0628\u0647 \u0648\u0628 \u0633\u0627\u06cc\u062a \u0642\u0627\u0646\u0648\u0646\u06cc \u0627\u0631\u0633\u0627\u0644 \u0645\u06cc \u06a9\u0646\u062f.  <\/li>\n<li>\u0627\u0632 \u0622\u0646\u062c\u0627 \u06a9\u0647 \u0645\u0631\u0648\u0631\u06af\u0631 \u06a9\u0627\u0631\u0628\u0631 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0634\u0627\u0645\u0644 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u060c \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0628\u0647 \u06af\u0648\u0646\u0647 \u0627\u06cc \u067e\u0631\u062f\u0627\u0632\u0634 \u0645\u06cc \u0634\u0648\u062f \u06a9\u0647 \u06af\u0648\u06cc\u06cc \u06a9\u0627\u0631\u0628\u0631 \u0622\u0646 \u0631\u0627 \u0639\u0645\u062f\u0627\u064b \u0633\u0627\u062e\u062a\u0647 \u0627\u0633\u062a.  <\/li>\n<\/ol>\n<h3><span class=\"ez-toc-section\" id=\"%D9%86%D9%85%D9%88%D9%86%D9%87_%D8%A7%DB%8C_%D8%A7%D8%B2_%D8%AD%D9%85%D9%84%D9%87_CSRF\"><\/span>\n<p>  \u0646\u0645\u0648\u0646\u0647 \u0627\u06cc \u0627\u0632 \u062d\u0645\u0644\u0647 CSRF<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0628\u06cc\u0627\u06cc\u06cc\u062f \u0628\u06af\u0648\u06cc\u06cc\u0645 \u06a9\u0647 \u0634\u0645\u0627 \u06cc\u06a9 \u0628\u0631\u0646\u0627\u0645\u0647 \u0628\u0627\u0646\u06a9\u06cc \u0628\u0627 Node.js. \u0633\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0627\u06cc\u062f \u06a9\u0627\u0631\u0628\u0631 \u0648\u0627\u0631\u062f \u0633\u06cc\u0633\u062a\u0645 \u0634\u062f\u0647 \u0627\u0633\u062a \u0648 \u0628\u0627 \u0627\u0631\u0633\u0627\u0644 \u06cc\u06a9 \u0627\u0645\u06a9\u0627\u0646 \u0627\u0646\u062a\u0642\u0627\u0644 \u067e\u0648\u0644 \u0631\u0627 \u062f\u0627\u0631\u062f <code>POST<\/code> \u062f\u0631\u062e\u0648\u0627\u0633\u062a:<\/p>\n<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight http\"><code><span class=\"err\">POST \/transfer HTTP\/1.1\u00a0 \nHost: bank.com\u00a0 \nCookie: session_id=12345\u00a0 \nContent-Type: application\/json\u00a0 \n\n{ \"amount\": 1000, \"to_account\": \"hacker123\" }\n<\/span><\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p>  <\/p>\n<p>\u0627\u06a9\u0646\u0648\u0646 \u060c \u06cc\u06a9 \u0647\u06a9\u0631 \u0628\u0627 \u06cc\u06a9 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u067e\u0646\u0647\u0627\u0646 \u06cc\u06a9 \u0635\u0641\u062d\u0647 \u0648\u0628 \u0627\u06cc\u062c\u0627\u062f \u0645\u06cc \u06a9\u0646\u062f:<\/p>\n<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight html\"><code><span class=\"nt\"\/>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p>  <\/p>\n<p>\u0647\u0646\u06af\u0627\u0645\u06cc \u06a9\u0647 \u06a9\u0627\u0631\u0628\u0631 \u0646\u0627\u0622\u06af\u0627\u0647\u0627\u0646\u0647 \u0628\u0631 \u0631\u0648\u06cc \u062f\u06a9\u0645\u0647 \u06a9\u0644\u06cc\u06a9 \u0645\u06cc \u06a9\u0646\u062f \u060c \u0641\u0631\u0645 \u0627\u0631\u0633\u0627\u0644 \u0648 \u0627\u0646\u062a\u0642\u0627\u0644 \u067e\u0648\u0644 \u0628\u0647 \u062d\u0633\u0627\u0628 \u0645\u0647\u0627\u062c\u0645 \u0632\u06cc\u0631\u0627 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc \u062c\u0644\u0633\u0647 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u06af\u0646\u062c\u0627\u0646\u062f\u0647 \u0634\u062f\u0647 \u0627\u0646\u062f.  <\/p>\n<h2><span class=\"ez-toc-section\" id=\"%D9%86%D8%AD%D9%88%D9%87_%D9%85%D8%AD%D8%A7%D9%81%D8%B8%D8%AA_%D8%A7%D8%B2_%D8%A8%D8%B1%D9%86%D8%A7%D9%85%D9%87_%D9%87%D8%A7%DB%8C_Nodejs_%D8%A7%D8%B2_CSRF\"><\/span>\n<p>  \u0646\u062d\u0648\u0647 \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc Node.js \u0627\u0632 CSRF<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u0686\u0646\u062f\u06cc\u0646 \u0627\u0633\u062a\u0631\u0627\u062a\u0698\u06cc \u0628\u0631\u0627\u06cc \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc Node.js \u0627\u0632 \u062d\u0645\u0644\u0627\u062a CSRF \u0648\u062c\u0648\u062f \u062f\u0627\u0631\u062f. \u0628\u06cc\u0627\u06cc\u06cc\u062f \u0628\u0627 \u062c\u0632\u0626\u06cc\u0627\u062a \u0628\u0647 \u0622\u0646\u0647\u0627 \u0628\u067e\u0631\u062f\u0627\u0632\u06cc\u0645.  <\/p>\n<h3><span class=\"ez-toc-section\" id=\"1_%D8%A7%D8%B2_%D9%86%D8%B4%D8%A7%D9%86%D9%87_%D9%87%D8%A7%DB%8C_CSRF_%D8%A7%D8%B3%D8%AA%D9%81%D8%A7%D8%AF%D9%87_%DA%A9%D9%86%DB%8C%D8%AF\"><\/span>\n<p>  1. \u0627\u0632 \u0646\u0634\u0627\u0646\u0647 \u0647\u0627\u06cc CSRF \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u06cc\u06a9 \u062a\u0648\u06a9\u0646 CSRF \u06cc\u06a9 \u0645\u0642\u062f\u0627\u0631 \u062a\u0635\u0627\u062f\u0641\u06cc \u0648 \u0645\u0646\u062d\u0635\u0631 \u0628\u0647 \u0641\u0631\u062f \u0627\u0633\u062a \u06a9\u0647 \u062a\u0648\u0633\u0637 \u0633\u0631\u0648\u0631 \u062a\u0648\u0644\u06cc\u062f \u0645\u06cc \u0634\u0648\u062f \u0648 \u062f\u0631 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u062d\u0633\u0627\u0633 \u06af\u0646\u062c\u0627\u0646\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f. \u0633\u0631\u0648\u0631 \u0642\u0628\u0644 \u0627\u0632 \u067e\u0631\u062f\u0627\u0632\u0634 \u0647\u0631 \u0639\u0645\u0644\u06cc \u060c \u0627\u06cc\u0646 \u0646\u0634\u0627\u0646\u0647 \u0631\u0627 \u062a\u0623\u06cc\u06cc\u062f \u0645\u06cc \u06a9\u0646\u062f.  <\/p>\n<h4><span class=\"ez-toc-section\" id=\"%D9%86%D8%AD%D9%88%D9%87_%D8%A7%D8%AC%D8%B1%D8%A7%DB%8C_%D9%86%D8%B4%D8%A7%D9%86%D9%87_%D9%87%D8%A7%DB%8C_CSRF_%D8%AF%D8%B1_Nodejs\"><\/span>\n<p>  \u0646\u062d\u0648\u0647 \u0627\u062c\u0631\u0627\u06cc \u0646\u0634\u0627\u0646\u0647 \u0647\u0627\u06cc CSRF \u062f\u0631 Node.js<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>\u0627\u06af\u0631 \u0627\u0632 Express.js \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u06a9\u0646\u06cc\u062f \u060c <code>csurf<\/code> Middleware \u0627\u062c\u0631\u0627\u06cc \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 CSRF \u0631\u0627 \u0622\u0633\u0627\u0646 \u0645\u06cc \u06a9\u0646\u062f.  <\/p>\n<h4><span class=\"ez-toc-section\" id=\"%D9%85%D8%B1%D8%AD%D9%84%D9%87_1_%D9%86%D8%B5%D8%A8_%DA%A9%D9%86%DB%8C%D8%AF_csurf_%D8%B8%D8%B1%D9%88%D9%81_%D9%85%DB%8C%D8%A7%D9%86%D8%A8%D8%B1\"><\/span>\n<p>  <strong>\u0645\u0631\u062d\u0644\u0647 1: \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f <code>csurf<\/code> \u0638\u0631\u0648\u0641 \u0645\u06cc\u0627\u0646\u0628\u0631<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>  <\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight shell\"><code>npm <span class=\"nb\">install <\/span>csurf\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p> <\/p>\n<h4><span class=\"ez-toc-section\" id=\"%D9%85%D8%B1%D8%AD%D9%84%D9%87_2_%D9%BE%DB%8C%DA%A9%D8%B1%D8%A8%D9%86%D8%AF%DB%8C_csurf_%D8%AF%D8%B1_expressjs\"><\/span>\n<p>  <strong>\u0645\u0631\u062d\u0644\u0647 2: \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc <code>csurf<\/code> \u062f\u0631 express.js<\/strong><br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>  <\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight javascript\"><code><span class=\"kd\">const<\/span> <span class=\"nx\">express<\/span> <span class=\"o\">=<\/span> <span class=\"nf\">require<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">express<\/span><span class=\"dl\">'<\/span><span class=\"p\">);<\/span>\n<span class=\"kd\">const<\/span> <span class=\"nx\">csrf<\/span> <span class=\"o\">=<\/span> <span class=\"nf\">require<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">csurf<\/span><span class=\"dl\">'<\/span><span class=\"p\">);<\/span>\n<span class=\"kd\">const<\/span> <span class=\"nx\">cookieParser<\/span> <span class=\"o\">=<\/span> <span class=\"nf\">require<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">cookie-parser<\/span><span class=\"dl\">'<\/span><span class=\"p\">);<\/span>\n\n<span class=\"kd\">const<\/span> <span class=\"nx\">app<\/span> <span class=\"o\">=<\/span> <span class=\"nf\">express<\/span><span class=\"p\">();<\/span>\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">use<\/span><span class=\"p\">(<\/span><span class=\"nx\">express<\/span><span class=\"p\">.<\/span><span class=\"nf\">urlencoded<\/span><span class=\"p\">({<\/span> <span class=\"na\">extended<\/span><span class=\"p\">:<\/span> <span class=\"kc\">true<\/span> <span class=\"p\">}));<\/span>\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">use<\/span><span class=\"p\">(<\/span><span class=\"nf\">cookieParser<\/span><span class=\"p\">());<\/span>\n\n<span class=\"c1\">\/\/ Enable CSRF Protection<\/span>\n<span class=\"kd\">const<\/span> <span class=\"nx\">csrfProtection<\/span> <span class=\"o\">=<\/span> <span class=\"nf\">csrf<\/span><span class=\"p\">({<\/span> <span class=\"na\">cookie<\/span><span class=\"p\">:<\/span> <span class=\"kc\">true<\/span> <span class=\"p\">});<\/span>\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">use<\/span><span class=\"p\">(<\/span><span class=\"nx\">csrfProtection<\/span><span class=\"p\">);<\/span>\n\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">get<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">\/form<\/span><span class=\"dl\">'<\/span><span class=\"p\">,<\/span> <span class=\"p\">(<\/span><span class=\"nx\">req<\/span><span class=\"p\">,<\/span> <span class=\"nx\">res<\/span><span class=\"p\">)<\/span> <span class=\"o\">=&gt;<\/span> <span class=\"p\">{<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"nx\">res<\/span><span class=\"p\">.<\/span><span class=\"nf\">send<\/span><span class=\"p\">(<\/span><span class=\"s2\">`\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <\/span><span class=\"nx\">req<\/span><span class=\"p\">.<\/span><span class=\"nf\">csrfToken<\/span><span class=\"p\">()}<\/span><span class=\"s2\">\"&gt;\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <button type=\"submit\">Submit<\/button>\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \n\u00a0\u00a0\u00a0 `<\/span><span class=\"p\">);<\/span>\n<span class=\"p\">});<\/span>\n\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">post<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">\/submit<\/span><span class=\"dl\">'<\/span><span class=\"p\">,<\/span> <span class=\"p\">(<\/span><span class=\"nx\">req<\/span><span class=\"p\">,<\/span> <span class=\"nx\">res<\/span><span class=\"p\">)<\/span> <span class=\"o\">=&gt;<\/span> <span class=\"p\">{<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"nx\">res<\/span><span class=\"p\">.<\/span><span class=\"nf\">send<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">Form submitted successfully!<\/span><span class=\"dl\">'<\/span><span class=\"p\">);<\/span>\n<span class=\"p\">});<\/span>\n\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">listen<\/span><span class=\"p\">(<\/span><span class=\"mi\">3000<\/span><span class=\"p\">,<\/span> <span class=\"p\">()<\/span> <span class=\"o\">=&gt;<\/span> <span class=\"nx\">console<\/span><span class=\"p\">.<\/span><span class=\"nf\">log<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">Server running on port 3000<\/span><span class=\"dl\">'<\/span><span class=\"p\">));<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p>  <\/p>\n<p>\u062f\u0631 \u0627\u06cc\u0646 \u0645\u062b\u0627\u0644:  <\/p>\n<ul>\n<li>\n<code>csrf()<\/code>  \u06cc\u06a9 \u0646\u0634\u0627\u0646\u0647 \u0645\u0646\u062d\u0635\u0631 \u0628\u0647 \u0641\u0631\u062f CSRF \u0627\u06cc\u062c\u0627\u062f \u0645\u06cc \u06a9\u0646\u062f.  <\/li>\n<li>\u0627\u06cc\u0646 \u0646\u0634\u0627\u0646\u0647 \u062f\u0631 \u0641\u0631\u0645 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06cc\u06a9 \u0642\u0633\u0645\u062a \u0648\u0631\u0648\u062f\u06cc \u067e\u0646\u0647\u0627\u0646 \u06af\u0646\u062c\u0627\u0646\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a.  <\/li>\n<li>\u0628\u0627 \u0627\u0631\u0633\u0627\u0644 \u0641\u0631\u0645 \u060c \u0633\u0631\u0648\u0631 \u062a\u0648\u06a9\u0646 \u0631\u0627 \u062a\u0623\u06cc\u06cc\u062f \u0645\u06cc \u06a9\u0646\u062f.  <\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"2_%D8%A7%D8%B2_%DA%A9%D9%88%DA%A9%DB%8C_%D9%87%D8%A7%DB%8C_Samesite_%D8%A7%D8%B3%D8%AA%D9%81%D8%A7%D8%AF%D9%87_%DA%A9%D9%86%DB%8C%D8%AF\"><\/span>\n<p>  2. \u0627\u0632 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc Samesite \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc Samesite \u0645\u0627\u0646\u0639 \u0627\u0632 \u0627\u0631\u0633\u0627\u0644 \u0645\u0631\u0648\u0631\u06af\u0631\u0647\u0627 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc \u062a\u0623\u06cc\u06cc\u062f \u0627\u0639\u062a\u0628\u0627\u0631 \u0628\u0627 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u0645\u062a\u0642\u0627\u0628\u0644 \u0645\u06cc \u0634\u0648\u0646\u062f. \u0627\u06cc\u0646 \u062d\u0645\u0644\u0647 \u0628\u0647 CSRF \u0628\u0627 \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u0627\u0632 \u0627\u0631\u0633\u0627\u0644 \u06a9\u0648\u06a9\u06cc \u0647\u0627 \u0641\u0642\u0637 \u062f\u0631 \u0635\u0648\u0631\u062a\u06cc \u06a9\u0647 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0627\u0632 \u0647\u0645\u0627\u0646 \u0648\u0628 \u0633\u0627\u06cc\u062a \u0628\u0627\u0634\u062f \u0627\u0631\u0633\u0627\u0644 \u0645\u06cc \u0634\u0648\u062f.  <\/p>\n<p>\u0628\u0631\u0627\u06cc \u0641\u0639\u0627\u0644 \u06a9\u0631\u062f\u0646 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc Samesite \u062f\u0631 \u062c\u0644\u0633\u0627\u062a \u0627\u06a9\u0633\u067e\u0631\u0633 \u060c \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u062c\u0644\u0633\u0647 \u062e\u0648\u062f \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u06cc\u062f:<\/p>\n<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight javascript\"><code><span class=\"kd\">const<\/span> <span class=\"nx\">session<\/span> <span class=\"o\">=<\/span> <span class=\"nf\">require<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">express-session<\/span><span class=\"dl\">'<\/span><span class=\"p\">);<\/span>\n\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">use<\/span><span class=\"p\">(<\/span><span class=\"nf\">session<\/span><span class=\"p\">({<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">secret<\/span><span class=\"p\">:<\/span> <span class=\"dl\">'<\/span><span class=\"s1\">your_secret_key<\/span><span class=\"dl\">'<\/span><span class=\"p\">,<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">resave<\/span><span class=\"p\">:<\/span> <span class=\"kc\">false<\/span><span class=\"p\">,<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">saveUninitialized<\/span><span class=\"p\">:<\/span> <span class=\"kc\">true<\/span><span class=\"p\">,<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">cookie<\/span><span class=\"p\">:<\/span> <span class=\"p\">{<\/span> <span class=\"na\">sameSite<\/span><span class=\"p\">:<\/span> <span class=\"dl\">'<\/span><span class=\"s1\">strict<\/span><span class=\"dl\">'<\/span> <span class=\"p\">}<\/span>\n<span class=\"p\">}));<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p> <\/p>\n<p>\u062a\u0646\u0638\u06cc\u0645 <code>sameSite: 'strict'<\/code> \u062a\u0636\u0645\u06cc\u0646 \u0645\u06cc \u06a9\u0646\u062f \u06a9\u0647 \u06a9\u0648\u06a9\u06cc \u0647\u0627 \u062f\u0631 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u0645\u062a\u0642\u0627\u0628\u0644 \u0627\u0631\u0633\u0627\u0644 \u0646\u0645\u06cc \u0634\u0648\u0646\u062f \u0648 \u0627\u0632 \u062d\u0645\u0644\u0627\u062a CSRF \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0645\u06cc \u06a9\u0646\u0646\u062f.  <\/p>\n<h3><span class=\"ez-toc-section\" id=\"3_%D8%A7%D8%B2_%DA%A9%D9%88%DA%A9%DB%8C_%D9%87%D8%A7%DB%8C_%D8%A7%DB%8C%D9%85%D9%86_%D9%88_httponly_%D8%A7%D8%B3%D8%AA%D9%81%D8%A7%D8%AF%D9%87_%DA%A9%D9%86%DB%8C%D8%AF\"><\/span>\n<p>  3. \u0627\u0632 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc \u0627\u06cc\u0645\u0646 \u0648 httponly \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc \u0627\u06cc\u0645\u0646 \u0645\u0627\u0646\u0639 \u0627\u0632 \u0633\u0631\u0642\u062a \u062f\u0627\u062f\u0647 \u0647\u0627\u06cc \u062c\u0644\u0633\u0647 \u0628\u0631 \u0631\u0648\u06cc \u0627\u062a\u0635\u0627\u0644\u0627\u062a \u0646\u0627\u0627\u0645\u0646 \u0645\u06cc \u0634\u0648\u0646\u062f \u0648 \u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc httponly \u0627\u0632 \u062d\u0645\u0644\u0627\u062a \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 \u062c\u0627\u0648\u0627 \u0627\u0633\u06a9\u0631\u06cc\u067e\u062a \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0645\u06cc \u06a9\u0646\u0646\u062f.  <\/p>\n<p>\u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u062c\u0644\u0633\u0647 \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0634\u0631\u062d \u0632\u06cc\u0631 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0647\u06cc\u062f:<\/p>\n<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight javascript\"><code><span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">use<\/span><span class=\"p\">(<\/span><span class=\"nf\">session<\/span><span class=\"p\">({<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">secret<\/span><span class=\"p\">:<\/span> <span class=\"dl\">'<\/span><span class=\"s1\">your_secret_key<\/span><span class=\"dl\">'<\/span><span class=\"p\">,<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">resave<\/span><span class=\"p\">:<\/span> <span class=\"kc\">false<\/span><span class=\"p\">,<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">saveUninitialized<\/span><span class=\"p\">:<\/span> <span class=\"kc\">true<\/span><span class=\"p\">,<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">cookie<\/span><span class=\"p\">:<\/span> <span class=\"p\">{<\/span> <span class=\"na\">httpOnly<\/span><span class=\"p\">:<\/span> <span class=\"kc\">true<\/span><span class=\"p\">,<\/span> <span class=\"na\">secure<\/span><span class=\"p\">:<\/span> <span class=\"kc\">true<\/span><span class=\"p\">,<\/span> <span class=\"na\">sameSite<\/span><span class=\"p\">:<\/span> <span class=\"dl\">'<\/span><span class=\"s1\">strict<\/span><span class=\"dl\">'<\/span> <span class=\"p\">}<\/span>\n<span class=\"p\">}));<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p>  <\/p>\n<h3><span class=\"ez-toc-section\" id=\"4\"><\/span>\n<p>  4<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0645\u0631\u0648\u0631\u06af\u0631\u0647\u0627\u06cc \u0648\u0628 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0627\u0631\u0633\u0627\u0644 \u0645\u06cc \u06a9\u0646\u0646\u062f <code>Referer<\/code> \u0648\u062a <code>Origin<\/code> \u0647\u062f\u0631\u0647\u0627\u06cc \u0628\u0627 \u062f\u0631\u062e\u0648\u0627\u0633\u062a. \u0634\u0645\u0627 \u0645\u06cc \u062a\u0648\u0627\u0646\u06cc\u062f \u0627\u06cc\u0646 \u0647\u062f\u0631\u0647\u0627 \u0631\u0627 \u062a\u0623\u06cc\u06cc\u062f \u06a9\u0646\u06cc\u062f \u062a\u0627 \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u062d\u0627\u0635\u0644 \u0634\u0648\u062f \u06a9\u0647 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627 \u0627\u0632 \u0645\u0646\u0627\u0628\u0639 \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc \u0634\u0648\u062f.  <\/p>\n<p>\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644 Middleware \u0628\u0631\u0627\u06cc \u0627\u0639\u062a\u0628\u0627\u0631\u0633\u0646\u062c\u06cc \u0647\u062f\u0631\u0647\u0627\u06cc \u0645\u0628\u062f\u0627:<\/p>\n<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight javascript\"><code><span class=\"kd\">const<\/span> <span class=\"nx\">allowedOrigins<\/span> <span class=\"o\">=<\/span> <span class=\"p\">[<\/span><span class=\"dl\">'<\/span><span class=\"s1\">https:\/\/yourwebsite.com<\/span><span class=\"dl\">'<\/span><span class=\"p\">];<\/span>\n\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">use<\/span><span class=\"p\">((<\/span><span class=\"nx\">req<\/span><span class=\"p\">,<\/span> <span class=\"nx\">res<\/span><span class=\"p\">,<\/span> <span class=\"nx\">next<\/span><span class=\"p\">)<\/span> <span class=\"o\">=&gt;<\/span> <span class=\"p\">{<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"kd\">const<\/span> <span class=\"nx\">origin<\/span> <span class=\"o\">=<\/span> <span class=\"nx\">req<\/span><span class=\"p\">.<\/span><span class=\"nx\">headers<\/span><span class=\"p\">.<\/span><span class=\"nx\">origin<\/span> <span class=\"o\">||<\/span> <span class=\"nx\">req<\/span><span class=\"p\">.<\/span><span class=\"nx\">headers<\/span><span class=\"p\">.<\/span><span class=\"nx\">referer<\/span><span class=\"p\">;<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"k\">if <\/span><span class=\"p\">(<\/span><span class=\"o\">!<\/span><span class=\"nx\">origin<\/span> <span class=\"o\">||<\/span> <span class=\"nx\">allowedOrigins<\/span><span class=\"p\">.<\/span><span class=\"nf\">includes<\/span><span class=\"p\">(<\/span><span class=\"nx\">origin<\/span><span class=\"p\">))<\/span> <span class=\"p\">{<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span> <span class=\"k\">return<\/span> <span class=\"nf\">next<\/span><span class=\"p\">();<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"p\">}<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"nx\">res<\/span><span class=\"p\">.<\/span><span class=\"nf\">status<\/span><span class=\"p\">(<\/span><span class=\"mi\">403<\/span><span class=\"p\">).<\/span><span class=\"nf\">send<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">CSRF attack detected!<\/span><span class=\"dl\">'<\/span><span class=\"p\">);<\/span>\n<span class=\"p\">});<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p>  <\/p>\n<h3><span class=\"ez-toc-section\" id=\"5_%D8%A8%D8%B1%D8%A7%DB%8C_%D8%A7%D9%82%D8%AF%D8%A7%D9%85%D8%A7%D8%AA_%D8%AD%D8%B3%D8%A7%D8%B3_%D8%A8%D9%87_%D8%AA%D8%A3%DB%8C%DB%8C%D8%AF_%D8%A7%D8%B9%D8%AA%D8%A8%D8%A7%D8%B1_%D9%86%DB%8C%D8%A7%D8%B2_%D8%AF%D8%A7%D8%B1%DB%8C%D8%AF\"><\/span>\n<p>  5. \u0628\u0631\u0627\u06cc \u0627\u0642\u062f\u0627\u0645\u0627\u062a \u062d\u0633\u0627\u0633 \u0628\u0647 \u062a\u0623\u06cc\u06cc\u062f \u0627\u0639\u062a\u0628\u0627\u0631 \u0646\u06cc\u0627\u0632 \u062f\u0627\u0631\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0628\u0631\u0627\u06cc \u0627\u0642\u062f\u0627\u0645\u0627\u062a\u06cc \u0645\u0627\u0646\u0646\u062f \u0627\u0646\u062a\u0642\u0627\u0644 \u0635\u0646\u062f\u0648\u0642 \u060c \u062a\u063a\u06cc\u06cc\u0631 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 \u06cc\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0627\u062f\u0647 \u0647\u0627 \u060c \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0631\u0627 \u0645\u0644\u0632\u0645 \u0645\u06cc \u06a9\u0646\u062f \u06a9\u0647 \u0642\u0628\u0644 \u0627\u0632 \u067e\u0631\u062f\u0627\u0632\u0634 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0645\u062c\u062f\u062f\u0627\u064b \u062a\u0623\u06cc\u06cc\u062f \u06a9\u0646\u0646\u062f.  <\/p>\n<p>\u0645\u062b\u0627\u0644:<\/p>\n<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight javascript\"><code><span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">post<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">\/transfer<\/span><span class=\"dl\">'<\/span><span class=\"p\">,<\/span> <span class=\"p\">(<\/span><span class=\"nx\">req<\/span><span class=\"p\">,<\/span> <span class=\"nx\">res<\/span><span class=\"p\">)<\/span> <span class=\"o\">=&gt;<\/span> <span class=\"p\">{<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"k\">if <\/span><span class=\"p\">(<\/span><span class=\"o\">!<\/span><span class=\"nx\">req<\/span><span class=\"p\">.<\/span><span class=\"nx\">session<\/span><span class=\"p\">.<\/span><span class=\"nx\">isAuthenticated<\/span><span class=\"p\">)<\/span> <span class=\"p\">{<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span> <span class=\"k\">return<\/span> <span class=\"nx\">res<\/span><span class=\"p\">.<\/span><span class=\"nf\">status<\/span><span class=\"p\">(<\/span><span class=\"mi\">403<\/span><span class=\"p\">).<\/span><span class=\"nf\">send<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">Authentication required!<\/span><span class=\"dl\">'<\/span><span class=\"p\">);<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"p\">}<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"c1\">\/\/ Proceed with transfer logic<\/span>\n<span class=\"p\">});<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<h3><span class=\"ez-toc-section\" id=\"6_CAPTCHA_%D8%B1%D8%A7_%D8%A8%D8%B1%D8%A7%DB%8C_%D8%AF%D8%B1%D8%AE%D9%88%D8%A7%D8%B3%D8%AA_%D9%87%D8%A7%DB%8C_%D9%85%D9%87%D9%85_%D9%BE%DB%8C%D8%A7%D8%AF%D9%87_%D8%B3%D8%A7%D8%B2%DB%8C_%DA%A9%D9%86%DB%8C%D8%AF\"><\/span>\n<p>  6. CAPTCHA \u0631\u0627 \u0628\u0631\u0627\u06cc \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u0645\u0647\u0645 \u067e\u06cc\u0627\u062f\u0647 \u0633\u0627\u0632\u06cc \u06a9\u0646\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 CAPTCHA \u062f\u0631 \u0627\u0642\u062f\u0627\u0645\u0627\u062a \u062d\u0633\u0627\u0633 \u0645\u0627\u0646\u0646\u062f \u062a\u063a\u06cc\u06cc\u0631 \u0631\u0645\u0632 \u0639\u0628\u0648\u0631 \u06cc\u0627 \u067e\u0631\u062f\u0627\u062e\u062a \u060c \u062a\u0636\u0645\u06cc\u0646 \u0645\u06cc \u06a9\u0646\u062f \u06a9\u0647 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u062e\u0648\u062f\u06a9\u0627\u0631 \u062a\u0648\u0633\u0637 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0642\u0627\u0628\u0644 \u0627\u062c\u0631\u0627 \u0646\u06cc\u0633\u062a.  <\/p>\n<p>recaptcha Google \u06cc\u06a9 \u0627\u0646\u062a\u062e\u0627\u0628 \u0645\u062d\u0628\u0648\u0628 \u0627\u0633\u062a:  <\/p>\n<ul>\n<li>\u062f\u0631 Google Recaptcha \u062b\u0628\u062a \u0646\u0627\u0645 \u06a9\u0646\u06cc\u062f  <\/li>\n<li>\u062a\u0623\u06cc\u06cc\u062f Captcha \u0631\u0627 \u0631\u0648\u06cc \u0641\u0631\u0645 \u0647\u0627\u06cc \u062e\u0648\u062f \u0627\u062f\u063a\u0627\u0645 \u06a9\u0646\u06cc\u062f  <\/li>\n<li>\u067e\u0627\u0633\u062e \u0647\u0627 \u0631\u0627 \u062f\u0631 \u0633\u0645\u062a \u0633\u0631\u0648\u0631 \u062a\u0623\u06cc\u06cc\u062f \u06a9\u0646\u06cc\u062f  <\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"7_%D8%A7%D8%B2_%D9%85%D8%AD%D8%AF%D9%88%D8%AF_%DA%A9%D8%B1%D8%AF%D9%86_%D9%86%D8%B1%D8%AE_API_%D8%A7%D8%B3%D8%AA%D9%81%D8%A7%D8%AF%D9%87_%DA%A9%D9%86%DB%8C%D8%AF\"><\/span>\n<p>  7. \u0627\u0632 \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u0646\u0631\u062e API \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062a\u0639\u062f\u0627\u062f \u062f\u0631\u062e\u0648\u0627\u0633\u062a\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u06a9\u0627\u0631\u0628\u0631 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u062a\u0623\u062b\u06cc\u0631 \u062d\u0645\u0644\u0627\u062a \u062e\u0648\u062f\u06a9\u0627\u0631 CSRF \u0631\u0627 \u06a9\u0627\u0647\u0634 \u062f\u0647\u062f.  <\/p>\n<p>\u0645\u062b\u0627\u0644 \u0628\u0627 <code>express-rate-limit<\/code>:<\/p>\n<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight shell\"><code>npm <span class=\"nb\">install <\/span>express-rate-limit\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p>  <\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight javascript\"><code><span class=\"kd\">const<\/span> <span class=\"nx\">rateLimit<\/span> <span class=\"o\">=<\/span> <span class=\"nf\">require<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">express-rate-limit<\/span><span class=\"dl\">'<\/span><span class=\"p\">);<\/span>\n\n<span class=\"kd\">const<\/span> <span class=\"nx\">limiter<\/span> <span class=\"o\">=<\/span> <span class=\"nf\">rateLimit<\/span><span class=\"p\">({<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">windowMs<\/span><span class=\"p\">:<\/span> <span class=\"mi\">15<\/span> <span class=\"o\">*<\/span> <span class=\"mi\">60<\/span> <span class=\"o\">*<\/span> <span class=\"mi\">1000<\/span><span class=\"p\">,<\/span> <span class=\"c1\">\/\/ 15 minutes<\/span>\n<span class=\"err\">\u00a0\u00a0\u00a0<\/span> <span class=\"na\">max<\/span><span class=\"p\">:<\/span> <span class=\"mi\">100<\/span> <span class=\"c1\">\/\/ Limit each IP to 100 requests per window<\/span>\n<span class=\"p\">});<\/span>\n\n<span class=\"nx\">app<\/span><span class=\"p\">.<\/span><span class=\"nf\">use<\/span><span class=\"p\">(<\/span><span class=\"dl\">'<\/span><span class=\"s1\">\/transfer<\/span><span class=\"dl\">'<\/span><span class=\"p\">,<\/span> <span class=\"nx\">limiter<\/span><span class=\"p\">);<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<h2><span class=\"ez-toc-section\" id=\"%D9%BE%D8%A7%DB%8C%D8%A7%D9%86\"><\/span>\n<p>  \u067e\u0627\u06cc\u0627\u0646<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u062d\u0645\u0644\u0627\u062a CSRF \u062f\u0631 \u0635\u0648\u0631\u062a \u0639\u062f\u0645 \u0641\u0634\u0627\u0631 \u060c \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0639\u0648\u0627\u0642\u0628 \u0648\u06cc\u0631\u0627\u0646\u06af\u0631 \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u062f. \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc Node.js \u0628\u0647 \u06cc\u06a9 \u0631\u0648\u06cc\u06a9\u0631\u062f \u0686\u0646\u062f \u0644\u0627\u06cc\u0647 \u0646\u06cc\u0627\u0632 \u062f\u0627\u0631\u062f \u060c \u0627\u0632 \u062c\u0645\u0644\u0647:  <\/p>\n<ul>\n<li>\n<strong>\u0646\u0634\u0627\u0646\u0647 \u0647\u0627\u06cc CSRF<\/strong> \u0628\u0631\u0627\u06cc \u062a\u0623\u06cc\u06cc\u062f \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u0642\u0627\u0646\u0648\u0646\u06cc \u06a9\u0627\u0631\u0628\u0631.  <\/li>\n<li>\n<strong>\u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc samesite<\/strong> \u0628\u0631\u0627\u06cc \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u0627\u0646\u062a\u0642\u0627\u0644 \u06a9\u0648\u06a9\u06cc \u062f\u0631 \u0633\u0627\u06cc\u062a \u0647\u0627.  <\/li>\n<li>\n<strong>\u06a9\u0648\u06a9\u06cc \u0647\u0627\u06cc \u0627\u06cc\u0645\u0646 \u0648 httponly<\/strong> \u0628\u0631\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a \u0642\u0648\u06cc \u062a\u0631  <\/li>\n<li>\n<strong>\u0627\u0639\u062a\u0628\u0627\u0631 \u0633\u0646\u062c\u06cc \u0627\u0631\u062c\u0627\u0639 \u0648 \u0645\u0628\u062f\u0627<\/strong> \u0628\u0631\u0627\u06cc \u0645\u0633\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0647\u0627\u06cc \u063a\u06cc\u0631\u0645\u062c\u0627\u0632.  <\/li>\n<li>\n<strong>\u0645\u062c\u062f\u062f\u0627\u064b \u062a\u0623\u06cc\u06cc\u062f \u0648 \u06a9\u0627\u067e\u0686\u0627<\/strong> \u0628\u0631\u0627\u06cc \u062a\u0623\u06cc\u06cc\u062f \u0647\u062f\u0641 \u06a9\u0627\u0631\u0628\u0631.  <\/li>\n<li>\n<strong>\u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u0646\u0631\u062e<\/strong> \u0628\u0631\u0627\u06cc \u0628\u0647 \u062d\u062f\u0627\u0642\u0644 \u0631\u0633\u0627\u0646\u062f\u0646 \u0627\u062b\u0631\u0628\u062e\u0634\u06cc \u062d\u0645\u0644\u0647.  <\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"%D8%B4%D9%85%D8%A7_%D9%87%D9%85%DA%86%D9%86%DB%8C%D9%86_%D9%85%D9%85%DA%A9%D9%86_%D8%A7%D8%B3%D8%AA_%D8%AF%D9%88%D8%B3%D8%AA_%D8%AF%D8%A7%D8%B4%D8%AA%D9%87_%D8%A8%D8%A7%D8%B4%DB%8C%D8%AF\"><\/span>\n<p>  \u0634\u0645\u0627 \u0647\u0645\u0686\u0646\u06cc\u0646 \u0645\u0645\u06a9\u0646 \u0627\u0633\u062a \u062f\u0648\u0633\u062a \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ol>\n<li>\n<p>10 \u0627\u0634\u062a\u0628\u0627\u0647 \u0631\u0627\u06cc\u062c \u0628\u0627 \u06a9\u062f \u0647\u0645\u0632\u0645\u0627\u0646 \u062f\u0631 Node.js<\/p>\n<\/li>\n<li>\n<p>\u0686\u0631\u0627 85 \u066a \u0627\u0632 \u062a\u0648\u0633\u0639\u0647 \u062f\u0647\u0646\u062f\u06af\u0627\u0646 \u0627\u0632 Express.js \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u06a9\u0646\u0646\u062f<\/p>\n<\/li>\n<li>\n<p>\u0627\u062c\u0631\u0627\u06cc \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u0635\u0641\u0631 \u067e\u0627\u06cc\u06cc\u0646 \u062f\u0631 Node.js<\/p>\n<\/li>\n<li>\n<p>10 \u0627\u0634\u062a\u0628\u0627\u0647 \u0645\u062f\u06cc\u0631\u06cc\u062a \u062d\u0627\u0641\u0638\u0647 \u0645\u0634\u062a\u0631\u06a9 \u062f\u0631 Node.js<\/p>\n<\/li>\n<li>\n<p>5 \u062a\u0641\u0627\u0648\u062a \u06a9\u0644\u06cc\u062f\u06cc \u0628\u06cc\u0646 ^ \u0648 ~ \u062f\u0631 Pack.json<\/p>\n<\/li>\n<li>\n<p>Scaling Node.js \u0628\u0631\u0627\u06cc \u0645\u0639\u0645\u0627\u0631\u06cc \u0686\u0646\u062f \u0645\u0633\u062a\u0627\u062c\u0631 \u0642\u0648\u06cc<\/p>\n<\/li>\n<li>\n<p>6 \u0627\u0634\u062a\u0628\u0627\u0647 \u0631\u0627\u06cc\u062c \u062f\u0631 \u0637\u0631\u0627\u062d\u06cc \u062f\u0627\u0645\u0646\u0647 \u0645\u062d\u0648\u0631 (DDD) \u0628\u0627 Express.js<\/p>\n<\/li>\n<li>\n<p>10 \u067e\u06cc\u0634\u0631\u0641\u062a \u0639\u0645\u0644\u06a9\u0631\u062f \u062f\u0631 Node.js \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 V8<\/p>\n<\/li>\n<li>\n<p>\u0622\u06cc\u0627 node.js \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u06cc\u0644\u06cc\u0648\u0646 \u0647\u0627 \u06a9\u0627\u0631\u0628\u0631 \u0631\u0627 \u0627\u062f\u0627\u0631\u0647 \u06a9\u0646\u062f\u061f<\/p>\n<\/li>\n<li>\n<p>Express.js \u0627\u0633\u0631\u0627\u0631 \u06a9\u0647 \u062a\u0648\u0633\u0639\u0647 \u062f\u0647\u0646\u062f\u06af\u0627\u0646 \u0627\u0631\u0634\u062f \u0628\u0647 \u0627\u0634\u062a\u0631\u0627\u06a9 \u0646\u0645\u06cc \u06af\u0630\u0627\u0631\u0646\u062f<\/p>\n<\/li>\n<\/ol>\n<p>\u0648\u0628\u0644\u0627\u06af \u0647\u0627\u06cc \u0628\u06cc\u0634\u062a\u0631 \u0631\u0627 \u0627\u0632 \u0627\u06cc\u0646\u062c\u0627 \u0628\u062e\u0648\u0627\u0646\u06cc\u062f<\/p>\n<p>\u062a\u062c\u0631\u0628\u06cc\u0627\u062a \u062e\u0648\u062f \u0631\u0627 \u062f\u0631 \u0646\u0638\u0631\u0627\u062a \u0628\u0647 \u0627\u0634\u062a\u0631\u0627\u06a9 \u0628\u06af\u0630\u0627\u0631\u06cc\u062f \u060c \u0648 \u0628\u06cc\u0627\u06cc\u06cc\u062f \u062f\u0631 \u0645\u0648\u0631\u062f \u0646\u062d\u0648\u0647 \u0645\u0642\u0627\u0628\u0644\u0647 \u0628\u0627 \u0622\u0646\u0647\u0627 \u0628\u062d\u062b \u06a9\u0646\u06cc\u0645!<\/p>\n<p>\u0645\u0646 \u0631\u0627 \u062f\u0631 LinkedIn \u062f\u0646\u0628\u0627\u0644 \u06a9\u0646\u06cc\u062f<\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>\u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0645\u062a\u0642\u0627\u0637\u0639 \u062c\u0639\u0644\u06cc (CSRF) \u06cc\u06a9\u06cc \u0627\u0632 \u0628\u062f\u0646\u0627\u0645 \u062a\u0631\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627\u06cc \u0648\u0628 \u0627\u0633\u062a \u06a9\u0647 \u062a\u0648\u0633\u0639\u0647 \u062f\u0647\u0646\u062f\u06af\u0627\u0646 \u0628\u0627\u06cc\u062f \u0627\u0632 \u0622\u0646 \u062f\u0641\u0627\u0639 \u06a9\u0646\u0646\u062f. \u0627\u06cc\u0646 \u062d\u0645\u0644\u0647 \u06cc\u06a9 \u06a9\u0627\u0631\u0628\u0631 \u0645\u0639\u062a\u0628\u0631 \u0631\u0627 \u062f\u0631 \u0627\u0646\u062c\u0627\u0645 \u0646\u0627\u0622\u06af\u0627\u0647\u0627\u0646\u0647 \u0627\u0642\u062f\u0627\u0645\u0627\u062a \u0646\u0627\u062e\u0648\u0627\u0633\u062a\u0647 \u062f\u0631 \u06cc\u06a9 \u0628\u0631\u0646\u0627\u0645\u0647 \u0648\u0628 \u0641\u0631\u06cc\u0628 \u0645\u06cc \u062f\u0647\u062f. \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644 \u060c \u06cc\u06a9 \u0648\u0628 \u0633\u0627\u06cc\u062a \u0645\u062e\u0631\u0628 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u06cc\u06a9 \u06a9\u0627\u0631\u0628\u0631 \u0648\u0627\u0631\u062f \u0634\u062f\u0647 \u0631\u0627 \u0648\u0627\u062f\u0627\u0631 &hellip;<\/p>\n","protected":false},"author":2,"featured_media":103655,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/media2.dev.to\/dynamic\/image\/width=1000,height=500,fit=cover,gravity=auto,format=auto\/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ff24pnezsr969r12mkugg.png","fifu_image_alt":"","footnotes":""},"categories":[339],"tags":[],"class_list":["post-103654","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-dev"],"_links":{"self":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts\/103654","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/comments?post=103654"}],"version-history":[{"count":0,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts\/103654\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/media\/103655"}],"wp:attachment":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/media?parent=103654"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/categories?post=103654"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/tags?post=103654"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}