You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@ofbiz.apache.org by jl...@apache.org on 2020/04/04 15:59:44 UTC
[ofbiz-framework] 24/26: Improved: Implemented: Documented:
Completed: Reverted: Fixed:
This is an automated email from the ASF dual-hosted git repository.
jleroux pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git
commit 768353a09339eb431c89d50ee96568a998352d4b
Author: Jacques Le Roux <ja...@les7arts.com>
AuthorDate: Sat Apr 4 15:25:16 2020 +0200
Improved:
Implemented:
Documented:
Completed:
Reverted:
Fixed:
(OFBIZ-)
Explanation
Thanks:
---
.../security/src/main/java/org/apache/ofbiz/security/CsrfUtil.java | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/framework/security/src/main/java/org/apache/ofbiz/security/CsrfUtil.java b/framework/security/src/main/java/org/apache/ofbiz/security/CsrfUtil.java
index eaf5635..9d400b8 100644
--- a/framework/security/src/main/java/org/apache/ofbiz/security/CsrfUtil.java
+++ b/framework/security/src/main/java/org/apache/ofbiz/security/CsrfUtil.java
@@ -139,7 +139,7 @@ public class CsrfUtil {
// e.g. "/viewprofile?partyId=Company" to "/viewprofile"
requestUri = requestUri.substring(0, requestUri.indexOf("?"));
}
- String controlServletPart = "/control/";
+ String controlServletPart = "/control/"; // TODO remove with OFBIZ-11229
if (requestUri.contains(controlServletPart)) {
// e.g. "/partymgr/control/viewprofile" to "viewprofile"
requestUri = requestUri.substring(requestUri.indexOf(controlServletPart) + controlServletPart.length());