"https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet"
"https://wiki.mozilla.org/Security/Origin"
"https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie"
"https://chloe.re/2016/04/13/goodbye-csrf-samesite-to-the-rescue/"