Is there a way to prevent POSTs that aren't being generated from the server itself? (NGINX)
Something in the server config file along the lines of the following, but only if the POST is from the same server:
# add_header Allow "POST" always;
if ( $request_method !~ ^(POST)$ ) {
return 403;
}
0 Answers