Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Neutral
Fix Version/s: None
Affects Version/s: 6.2.14
Component/s: None
Labels:
- csrf

Template:
Acceptance criteria:

Empty

show more show less
Task DoR:

Empty

show more show less
Sprint:
Nucleus 1, Nucleus 2
Story Points:
5

From Mika:

The CSRF security section only mentions the referer-based CsrfSecurityFilter. There's nothing about CsrfTokenSecurityFilter, which will potentially change with ~~MAGNOLIA-8210~~.

We should overhaul that section once ~~MAGNOLIA-8210~~ is done. The history of CSRF implementation in Magnolia has been consolidated at https://wiki.magnolia-cms.com/display/ARCHI/2021-10-18+CSRF+concept+review.

Acceptance criteria

documents

MAGNOLIA-8210 Review CSRF filter implementations and bypasses

Closed

relates to

MAGNOLIA-8210 Review CSRF filter implementations and bypasses

Closed

Assignee:: Ashraf Khamis

Reporter:: Ashraf Khamis

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 16/Nov/21 9:53 AM

Updated:: 19/Jan/22 11:32 AM

Resolved:: 19/Jan/22 11:32 AM

Task DoR

Details

Description

Checklists

Attachments

Issue Links

Activity

People

Dates

Checklists