Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-4873 Security issue: Editing pages using URL
  3. XWIKI-5465

Fix all integration tests to work with enabled CSRF protection

    XMLWordPrintable

    Details

    • Type: Sub-task
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.5 M1
    • Fix Version/s: 3.2 M1
    • Labels:
      None
    • Difficulty:
      Medium
    • Similar issues:

      Description

      Tests that use URLs to directly delete/create/modify pages will need to include the CSRF token into the request. The token will need to be extracted from some page and cached after each login.

        Attachments

          Activity

            People

            Assignee:
            nickless Alex Busenius
            Reporter:
            nickless Alex Busenius
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: