diff --git a/api/api.py b/api/api.py
index f4b71e2..e1ffb89 100644
--- a/api/api.py
+++ b/api/api.py
@@ -38,7 +38,10 @@
 # Restrict cookies using SameSite=strict flag
 app.config["JWT_COOKIE_SAMESITE"] = "strict"
 # Restrict refresh tokens to /token/refresh endpoint
-app.config['JWT_REFRESH_COOKIE_PATH'] = '/tokens/refresh'
+app.config["JWT_REFRESH_COOKIE_PATH"] = '/tokens/refresh'
+# Set the cookie key for CRSF validation string
+# This is the default value. Adding it for easy reference
+app.config["JWT_REFRESH_CSRF_HEADER_NAME"] = "X-CSRF-TOKEN"
 
 tokenManager = JWTManager(app)