I often see the question: “Is Laravel secure?“, and in this video, let’s take a look at what the framework offers, and how developers use or misuse the security features.
00:00 Intro
00:37 Blade XSS Attack
02:34 Protect Your .env File
04:34 Don’t Use $request-all()
05:53 File Upload: Client Data
06:38 APP_DEBUG=true in Production
08:17 CSRF and Route::get()
09:54 Rate Limiting
Links mentioned in the video:
- Blade: Displaying Unescaped Data #displaying-unescaped-data
- How to use Laravel .env and . files?
- Danger of Using $request-all(), and How to Protect
- Uploaded File Information: #other-uploaded-file-information
- Configuration: Debug Mode #debug-mode
- Laravel .: APP_XXX Values Explained
- CSRF Protection: htt
10 views
77
20
1 month ago 01:29:31 2
Laravel Livewire Crash Course | Livewire 3 Tutorial for Beginners in 1.5 Hours
1 month ago 10:55:27 8
Laravel 11 in 11 hours - Laravel for Beginners Full Course
3 months ago 00:47:42 1
North Meets South - 162 - Tenanted files, testing batch jobs, and enhanced enumerations
3 months ago 00:26:17 1
Livewire Beyond the Basics | Philo Hermans at Laracon US 2024 in Dallas, TX
3 months ago 00:04:50 1
Laravel Redactable Models Package: Hide Values for Old Unneeded Records
4 months ago 00:40:15 1
North Meets South - 160 - The one with environment config
4 months ago 00:03:29 3
Validate That Data (A 3 Minute Overview of Validation in Laravel)
4 months ago 00:11:33 1
Laravel Advanced String package with Matt Stenson
4 months ago 00:06:53 2
Add Passkeys to a Laravel App
4 months ago 01:52:30 1
Let’s build a messenger clone with Laravel 11, Vue 3 and Reverb (2/3)
4 months ago 00:17:08 3
Self Hosting Reverse Proxy Servers
5 months ago 00:06:42 1
Exploring Laravel Rate Limiters: Control Traffic & Secure Actions ⛔
5 months ago 00:49:57 1
013. Didn’t think that’d work with Sam Levy
5 months ago 00:09:49 1
Make Your Livewire App Secure by Default
5 months ago 00:03:25 1
Aikido for Laravel Forge
5 months ago 01:51:11 5
Let’s build a messenger clone with Laravel 11, Vue 3 and Reverb (1/2)
5 months ago 00:07:53 5
Upgrade Laravel v10 to v11
6 months ago 01:14:37 2
386: PHPever Dream
6 months ago 00:08:19 4
Is Laravel Livewire actually secure?
7 months ago 00:20:27 1
Laravel Filament Shield Plugin in multiple panels
7 months ago 00:10:28 2
Laravel Filament Shield Plugin - Role and Permission
7 months ago 00:10:32 7
Top 5 Laravel “Bad Practices“ (My Opinion)
8 months ago 00:07:13 1
What’s New in Laravel 11, Ep 12 - Encryption Key Rotation