Posted by: Pdfprep
Post Date: January 16, 2021
How should a DevOps engineer configure against Cross Site Request Forging attacks?
A . Create a filter to allow /libs/granite/csrf/token.json path and CSRF-Token header in dispatcher
B . Set Access-Control-Allow-Origin to wildcard
C . Send the proper X-Frame-Options HTTP response headers that instruct the browser to disallow framing from other domains
Answer: A
Explanation:
Reference https://helpx.adobe.com/experience-manager/dispatcher/using/configuring-dispatcher-toprevent-csrf.html