FAQ-000221 - CSRF and DML Security Issues / Managed Package CSRF Considerations

To balance user experience with CSRF prevention in component design: 1. Use a single CSRF token per session if per-request tokens are difficult to implement, ensuring the token has sufficient entropy. 2. Avoid triggering state changes or DML operations on page load, as this bypasses default CSRF protections. 3. Require explicit user actions, like button clicks, to initiate sensitive operations. 4. Set attributes like `confirmationTokenRequired` to true to enforce CSRF protection. These practices help secure your application while maintaining a smooth user experience.

The answer contains a minor case inconsistency in the ConfirmationTokenRequired attribute name. In the fourth point, 'ConfirmationTokenRequired' should use camelCase as 'confirmationTokenRequired' to match Salesforce attribute naming conventions. This change improves technical accuracy without altering the structure or content of the FAQ. Regarding related security rules: ApexCSRF is directly relevant because this FAQ discusses CSRF prevention strategies in component design, which is exactly what the ApexCSRF rule detects and prevents - CSRF vulnerabilities in Apex code. The FAQ's advice about requiring explicit user actions, using CSRF tokens, and avoiding state changes on page load directly relates to preventing the CSRF issues this rule identifies. VfCsrf is also relevant because the FAQ discusses component design and CSRF prevention generally, which includes Visualforce components where VfCsrf applies. The FAQ's guidance about CSRF tokens and user action requirements applies to both Apex and Visualforce contexts.