Jacques Le Roux created OFBIZ-11425:
---------------------------------------
Summary: Test "POC for CSRF Token"
Key: OFBIZ-11425
URL:
https://issues.apache.org/jira/browse/OFBIZ-11425 Project: OFBiz
Issue Type: Test
Components: ALL APPLICATIONS
Affects Versions: Trunk, Release Branch 18.12, Release Branch 17.12
Reporter: Jacques Le Roux
Assignee: Jacques Le Roux
Fix For: 18.12.01, 17.12.02
Hi All,
This "test" Jira to ask your help to review and test the work done in OFBIZ-11306. We have done all our possible, and now help is welcome. If you are experienced with penetrations tools, please use them.
You can find the branch to use in
https://github.com/JacquesLeRoux/ofbiz-framework/tree/POC-for-CSRF-Token-OFBIZ-11306. It's ready to merge in OFBiz trunk but we will not create a PR before being rassured that we (James and I) did not miss any issues. Like links without "csrf" token, or regressions introduced by the effort.
TIA
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
Locked
