Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-6773

Enable CSRF protection by default

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Fixed
    • Major
    • 3.2 M2
    • 3.2 M1
    • Other
    • None
    • security, csrf
    • Trivial

    Description

      The CSRF protection should be enabled by default to improve the security of the default XWiki installations.

      Attachments

        Issue Links

          blocks

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-6886 Fix xwiki.properties documentation after enabling csrf by default

          • Major - Major loss of function.
          • Closed
          depends on

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-4873 Security issue: Editing pages using URL

          • Major - Major loss of function.
          • Closed

          Activity

            People

              nickless Alex Busenius
              nickless Alex Busenius
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: