[XWIKI-18334] entitynamevalidation template send a 403 instead of 401 in case of CSRF issue - XWiki.org JIRA

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 12.6.7, 12.10.4
Fix Version/s: 13.1-rc-1, 12.10.5, 12.6.8
Component/s: Web - Templates & Resources
Labels:
None

Difficulty:
Unknown
Documentation:
N/A
Documentation in Release Notes:
N/A
Similar issues:

Description

We normally handle CSRF bad token with 401 HTTP status, but we apparently send a 403 HTTP status in case of bad CSRF token in entityname_validation.

Attachments

Activity

People

Assignee:: Simon Urli

Reporter:: Simon Urli

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 12/Feb/21 14:08

Updated:: 12/Feb/21 14:10

Resolved:: 12/Feb/21 14:10