== Prevent

To prevent SSRF vulnerabilities in web applications, it is recommended to adhere to the following guidelines:

* Use a whitelist of allowed domains, resources, and protocols from where the webserver can fetch resources.
* Any input accepted from the user should be validated and rejected if it does not match the positive specification expected.
* If possible, do not accept user input in functions that control where the webserver can fetch resources.

== References
* https://cheatsheetseries.owasp.org/cheatsheets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet.html