BiteSizedChunks.comLearn one small thing at a time.

Course contentsShow

Web Development

1What is the Internet?
2What is the Web?
3IP Addresses and Domain Names
4DNS: The Phone Book of the Internet
5What is a URL?
6HTTP: The Language of the Web
7The Request-Response Cycle
8HTTP Methods: GET and POST
9Status Codes: What the Server Says Back
10What is a Web Server?
11Static vs Dynamic Content
12Client-Side vs Server-Side
13HTTPS and SSL/TLS
14Localhost and Development Servers
15Putting It All Together: A Complete Page Load
16What is a Web Browser?
17Browser Architecture Overview
18The Rendering Engine
19The JavaScript Engine
20The Critical Rendering Path
21Parsing HTML into the DOM
22Parsing CSS into the CSSOM
23Constructing the Render Tree
24Layout and Reflow
25Paint and Composite
26Browser Developer Tools
27Browser Compatibility and Vendor Prefixes
28The Birth of the Web: Tim Berners-Lee and CERN
29The Browser Wars and Their Legacy
30The Formation of the W3C
31HTML Evolution: From HTML 1.0 to HTML5
32CSS Standardization and the Separation of Concerns
33JavaScript's Creation and Standardization as ECMAScript
34The Role of WHATWG in Modern Web Standards
35Living Standards vs Versioned Specifications
36Browser Vendors and the Standards Process
37Web Standards Today: Finding Current Specifications
38HTML, CSS, and JavaScript: The Three Pillars
39HTML's Role: Document Structure and Semantics
40CSS's Role: Separation of Presentation
41JavaScript's Role: Adding Interactivity
42Progressive Enhancement Philosophy
43Graceful Degradation vs Progressive Enhancement
44The Importance of Keeping Pillars Separate
45How the Pillars Work Together

Web Development

1What is the Internet?
2What is the Web?
3IP Addresses and Domain Names
4DNS: The Phone Book of the Internet
5What is a URL?
6HTTP: The Language of the Web
7The Request-Response Cycle
8HTTP Methods: GET and POST
9Status Codes: What the Server Says Back
10What is a Web Server?
11Static vs Dynamic Content
12Client-Side vs Server-Side
13HTTPS and SSL/TLS
14Localhost and Development Servers
15Putting It All Together: A Complete Page Load
16What is a Web Browser?
17Browser Architecture Overview
18The Rendering Engine
19The JavaScript Engine
20The Critical Rendering Path
21Parsing HTML into the DOM
22Parsing CSS into the CSSOM
23Constructing the Render Tree
24Layout and Reflow
25Paint and Composite
26Browser Developer Tools
27Browser Compatibility and Vendor Prefixes
28The Birth of the Web: Tim Berners-Lee and CERN
29The Browser Wars and Their Legacy
30The Formation of the W3C
31HTML Evolution: From HTML 1.0 to HTML5
32CSS Standardization and the Separation of Concerns
33JavaScript's Creation and Standardization as ECMAScript
34The Role of WHATWG in Modern Web Standards
35Living Standards vs Versioned Specifications
36Browser Vendors and the Standards Process
37Web Standards Today: Finding Current Specifications
38HTML, CSS, and JavaScript: The Three Pillars
39HTML's Role: Document Structure and Semantics
40CSS's Role: Separation of Presentation
41JavaScript's Role: Adding Interactivity
42Progressive Enhancement Philosophy
43Graceful Degradation vs Progressive Enhancement
44The Importance of Keeping Pillars Separate
45How the Pillars Work Together

← Web Development

Lesson 2914 of 2,982·52. Frontend SecurityPro lesson

Custom Request Headers as CSRF Defense

Using custom headers that cross-origin requests cannot set as an additional CSRF protection layer.

This lesson is for subscribers

You've completed the free preview. Subscribe to unlock every lesson in every course.

See pricing Back to course