Uploaded image for project: 'Magnolia'
  1. Magnolia
  2. MAGNOLIA-8226

DOC: Update CSRF filter implementation

    XMLWordPrintable

Details

    • Task
    • Resolution: Done
    • Neutral
    • None
    • 6.2.14
    • None
    • Nucleus 1, Nucleus 2
    • 5

    Description

      From Mika:

      The CSRF security section only mentions the referer-based CsrfSecurityFilter. There's nothing about CsrfTokenSecurityFilter, which will potentially change with MAGNOLIA-8210.

      We should overhaul that section once MAGNOLIA-8210 is done. The history of CSRF implementation in Magnolia has been consolidated at https://wiki.magnolia-cms.com/display/ARCHI/2021-10-18+CSRF+concept+review.

      Checklists

        Acceptance criteria

        Attachments

          Issue Links

            documents

            Improvement - An improvement or enhancement to an existing feature or task. MAGNOLIA-8210 Review CSRF filter implementations and bypasses

            • Neutral -
            • Closed
            relates to

            Improvement - An improvement or enhancement to an existing feature or task. MAGNOLIA-8210 Review CSRF filter implementations and bypasses

            • Neutral -
            • Closed

            Activity

              People

                akhamis Ashraf Khamis
                akhamis Ashraf Khamis
                Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved:

                  Checklists

                    Task DoR