You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "Shawn Jiang (JIRA)" <ji...@apache.org> on 2010/10/20 03:37:26 UTC
[jira] Resolved: (GERONIMO-5407) XSSXSRFFilter error in G 3.0-M1
jetty build when trying to list plugins in admin console
[ https://issues.apache.org/jira/browse/GERONIMO-5407?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Shawn Jiang resolved GERONIMO-5407.
-----------------------------------
Resolution: Fixed
Fix Version/s: 3.0
For the same request "http://localhost:8080/console/request?" The api request.getQueryString(); Tomcat returns null while jetty returns a zero length string.
fixed with r1024477@trunk. GERONIMO-5545 should also have been fixed by this change.
> XSSXSRFFilter error in G 3.0-M1 jetty build when trying to list plugins in admin console
> ----------------------------------------------------------------------------------------
>
> Key: GERONIMO-5407
> URL: https://issues.apache.org/jira/browse/GERONIMO-5407
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: console
> Affects Versions: 3.0-M1, 3.0
> Reporter: Forrest Xia
> Assignee: Shawn Jiang
> Fix For: 3.0
>
>
> Steps:
> 1. start jetty java ee build
> 2. try to list plugins in local repository
> the error shows in console output:
> 2010-06-27 09:57:48,188 WARN [XSRFHandler] Blocked due to missing HttpServletRequest parameter.
> 2010-06-27 09:57:48,188 ERROR [XSSXSRFFilter] XSSXSRFFilter blocked HttpServletRequest due to invalid FORM content.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.