Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-18334

entitynamevalidation template send a 403 instead of 401 in case of CSRF issue

    XMLWordPrintable

    Details

    • Difficulty:
      Unknown
    • Documentation:
      N/A
    • Documentation in Release Notes:
      N/A
    • Similar issues:

      Description

      We normally handle CSRF bad token with 401 HTTP status, but we apparently send a 403 HTTP status in case of bad CSRF token in entityname_validation.

        Attachments

          Activity

            People

            Assignee:
            surli Simon Urli
            Reporter:
            surli Simon Urli
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: