@@ -1,5 +1,4 @@
input validation to avoid XSS and injection
only allow signup, login ecc over HTTPS
session expiration
mark cookies as secure
consider SameSite=Strict
consider SameSite=Stricts
The note is not visible to the blocked user.