Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-20834

Missing CSRF token causes warning that the content will be executed in restricted mode to be displayed when creating an AWM entry

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Blocker
    • 14.10.9, 15.3-rc-1
    • 15.2-rc-1, 14.10.7
    • XClass
    • Windows 11 Pro, Chrome 112, using a local instance of XWiki 14.10.8 on Oracle 19c, Tomcat 9.0.73
    • Unknown
    • N/A
    • N/A

    Description

      Steps to reproduce

      1. Create an AppWithinMinutes app
      2. On Application's homepage, click "Add new entry"

      Expected results

      No warning is displayed on the top of the page.

      Actual results

      The following warning is displayed:

      Warning: For security reasons, the content of the edited document is executed in restricted mode, as the edit was not initiated by a validated request. There may be unexpected errors due to this

      Attachments

        Activity

          People

            tmortagne Thomas Mortagne
            iandriuta Ilie Andriuta
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: