Hi @tflight ! Thanks for your comment!
In my case I implemented Slim CSRF and I want to protect the route that generate a security token. I don’t know if the correct way…
/generateToken (the access should be protected)
/products (checks a security token)
In conclusion, I want to protect my api… Some suggestion?