drill-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Don Perial <perial...@gmail.com>
Subject CSRF Protection in Web UI
Date Thu, 15 Aug 2019 07:02:51 GMT
Hi,

I the OWASP ZAP scanner and one of the things it reported is the absence of
CSRF tokens in the forms for the Web UI. I searched through the
documentation, JIRA and the mailing list to no avail. Is there a way to
enable CSRF protection, as recommended by OWASP in the Drill Web UI?

Thanks In Advance,

P

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message