Web Security

CSRF 保护：防止跨站请求伪造攻击
安全响应头：配置内容安全策略和其他标头，以减轻 XSS、点击劫持等攻击

Spring Security 项目为保护 Web 应用程序免遭恶意利用提供支持。查阅 Spring Security 参考文档，包括：

The Spring Security project provides support for protecting web applications from malicious exploits. See the Spring Security reference documentation, including:

WebFlux Security
WebFlux Testing Support
CSRF protection
Security Response Headers