-
Task
-
Resolution: Done
-
Neutral
-
None
-
6.2.14
-
None
-
-
Empty show more show less
-
Empty show more show less
-
Nucleus 1, Nucleus 2
-
5
From Mika:
The CSRF security section only mentions the referer-based CsrfSecurityFilter. There's nothing about CsrfTokenSecurityFilter, which will potentially change with MAGNOLIA-8210.
We should overhaul that section once MAGNOLIA-8210 is done. The history of CSRF implementation in Magnolia has been consolidated at https://wiki.magnolia-cms.com/display/ARCHI/2021-10-18+CSRF+concept+review.
Acceptance criteria
- documents
-
MAGNOLIA-8210 Review CSRF filter implementations and bypasses
- Closed
- relates to
-
MAGNOLIA-8210 Review CSRF filter implementations and bypasses
- Closed