Uploaded image for project: 'Magnolia Multisite Module'
  1. Magnolia Multisite Module
  2. MULTISITE-11

Path handle is stripped twice thus access to another site is sometimes possible

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Neutral
    • 1.0.3
    • None

    Description

      With site settings
      site1 mapped to page page1 and domain www.domain1.com
      site2 mapped to page page2 and domain www.domain2.com
      and CrossSiteSecurityFilter restricting access from one to another there is a way to access first level page from other domain by calling:
      www.domain1.com/page1/page2
      www.domain2.com/page2/page1

      Checklists

        Acceptance criteria

        Attachments

          Issue Links

            Activity

              People

                jsimak Jaroslav Simak
                ochytil Ondrej Chytil
                Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved:

                  Checklists

                    Bug DoR
                    Task DoD