Adobe Commerce Developer Expert Questions and Answers
AD0-E709 Questions and Answers
Note! Following AD0-E709 Exam is Retired now. Please select the alternative replacement for your Exam Certification.
AD0-E709 Questions and Answers
Question # 6
Which two techniques can be used to protecta storefront POST action againstCross Site Request Forgery (CSRF) attacks? (Choose two.)
A.
The form sending data to that action needs to include a fornjtey parameter with a valid form key and the action must instantiate \Manento\Framwork\Data\ForumKey\Formkey\Validator validate it.
B.
The action needs to implement \Mgento\Framework\App\CSrfAwareActioninterface and include the validateForCsrf method implementing the actual protection logic.
C.
The form sending data to that action needs to include a form_key parameter with a valid form key which will automatically be used in a built-in CSRF validation.
D.
The action needs to implement \Magento\Framework\App\ActionvHttpPosTActioninterface to trigger built-in CSRF validation.