ASVS Requirement 7.6.2

• Level: 2
• Chapter: V7 Session Management
• Section: V7.6 Federated Re-authentication
• Source: 0x16-V7-Session-Management.md

Description

Verify that creation of a session requires either the user's consent or an explicit action, preventing the creation of new application sessions without user interaction.