I have a general Javascript question
The setup
-
Webserver ( number 1 ) with a website that uses html and javascript
-
A second ( number 2 ) webserver with Apache and Django
Webserver 1 with html / javascript page < ——- javascript applications requests data from Webserver 2 ———- > Webserver 2
The website from point 1 runs a javascript application that sends data to the web server number 2.
How can I make sure that web server number 2 only accepts http requests from the javascript application of web server number 1 ? For example I had
thought of a csrf token.
Is this already a good approach, are there any other possibilities I have? Thanks in advance.