isInsecureCookieExtractor() — fiber Function Reference
Architecture documentation for the isInsecureCookieExtractor() function in config.go from the fiber codebase.
Entity Profile
Dependency Diagram
graph TD c241f428_bbad_e71e_e828_68979a9dedf1["isInsecureCookieExtractor()"] 077ca922_400b_9f3f_bb69_e8f547a31678["config.go"] c241f428_bbad_e71e_e828_68979a9dedf1 -->|defined in| 077ca922_400b_9f3f_bb69_e8f547a31678 26373eb7_4116_a5b7_61ab_e893dc010693["validateExtractorSecurity()"] 26373eb7_4116_a5b7_61ab_e893dc010693 -->|calls| c241f428_bbad_e71e_e828_68979a9dedf1 style c241f428_bbad_e71e_e828_68979a9dedf1 fill:#6366f1,stroke:#818cf8,color:#fff
Relationship Graph
Source Code
middleware/csrf/config.go lines 208–223
func isInsecureCookieExtractor(extractor extractors.Extractor, cookieName string) bool {
if extractor.Source == extractors.SourceCookie {
// Exact match - definitely insecure
if extractor.Key == cookieName {
return true
}
// Case-insensitive match - potentially confusing, warn but don't panic
if utils.EqualFold(extractor.Key, cookieName) && extractor.Key != cookieName {
log.Warnf("[CSRF WARNING] Extractor cookie name '%s' is similar to CSRF cookie '%s' - this may be confusing",
extractor.Key, cookieName)
}
}
return false
}Domain
Subdomains
Defined In
Called By
Source
Frequently Asked Questions
What does isInsecureCookieExtractor() do?
isInsecureCookieExtractor() is a function in the fiber codebase, defined in middleware/csrf/config.go.
Where is isInsecureCookieExtractor() defined?
isInsecureCookieExtractor() is defined in middleware/csrf/config.go at line 208.
What calls isInsecureCookieExtractor()?
isInsecureCookieExtractor() is called by 1 function(s): validateExtractorSecurity.
Analyze Your Own Codebase
Get architecture documentation, dependency graphs, and domain analysis for your codebase in minutes.
Try Supermodel Free