You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@wicket.apache.org by "Martijn Dashorst (JIRA)" <ji...@apache.org> on 2015/06/07 18:10:00 UTC
[jira] [Updated] (WICKET-5919) Add support for CSRF prevention
[ https://issues.apache.org/jira/browse/WICKET-5919?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Martijn Dashorst updated WICKET-5919:
-------------------------------------
Issue Type: New Feature (was: Bug)
> Add support for CSRF prevention
> -------------------------------
>
> Key: WICKET-5919
> URL: https://issues.apache.org/jira/browse/WICKET-5919
> Project: Wicket
> Issue Type: New Feature
> Components: wicket
> Affects Versions: 7.0.0-M5, 6.19.0
> Reporter: Martijn Dashorst
> Assignee: Martijn Dashorst
> Fix For: 6.20.0, 7.0.0-M6
>
>
> Implement a request cycle listener that checks the HTTP Origin header for conflicts with the request header to prevent CSRF requests from affecting Wicket components.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)