How to implement anti-csrf?

Hi I'm working on an already deployed shiny app. I was wondering how do I implement anti-csrf functionality? I see that Shiny Pro had it implemented in a recent update, but I think pro has been discontinued.

I couldn't find similar questions/issues on question sites so hopped over here.

My assumptions/questions are as follows:

  • Is this something I could configure via R Studio Connect?
  • Is this something I can configure through Shiny functions?
  • Is this something I have to configure via layering custom JavaScript?

Thanks for any help. All the best.