ofbiz-notifications mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jacques Le Roux (JIRA)" <j...@apache.org>
Subject [jira] [Created] (OFBIZ-10427) Add a mean to handle CSRF
Date Sat, 02 Jun 2018 09:14:00 GMT
Jacques Le Roux created OFBIZ-10427:
---------------------------------------

             Summary: Add a mean to handle CSRF
                 Key: OFBIZ-10427
                 URL: https://issues.apache.org/jira/browse/OFBIZ-10427
             Project: OFBiz
          Issue Type: Improvement
          Components: framework
    Affects Versions: Trunk
            Reporter: Jacques Le Roux
            Assignee: Jacques Le Roux


I already worked on that in OFBiz but without success so far: https://markmail.org/message/r245yie623cdo3wz)
The tracks I explored are:
* https://www.owasp.org/index.php/Category:OWASP_CSRFGuard_Project (really not simple in OFBiz)
* https://tomcat.apache.org/tomcat-8.5-doc/config/filter.html#CSRF_Prevention_Filter/Introduction
(I think preferred)



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message