Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-4873 Security issue: Editing pages using URL
  3. XWIKI-5465

Fix all integration tests to work with enabled CSRF protection

    XMLWordPrintable

Details

    • Sub-task
    • Resolution: Fixed
    • Major
    • 3.2 M1
    • 2.5 M1
    • None
    • Medium

    Description

      Tests that use URLs to directly delete/create/modify pages will need to include the CSRF token into the request. The token will need to be extracted from some page and cached after each login.

      Attachments

        Activity

          People

            nickless Alex Busenius
            nickless Alex Busenius
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: