Bug #4895: API should check for the presence of a CSRF token when there is a session user - Foreman

Actions

Bug #4895

closed

API should check for the presence of a CSRF token when there is a session user

Added by Eric Helms over 10 years ago. Updated over 6 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

API

Target version:

Difficulty:

Triaged:

Bugzilla link:

Pull request:

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Related issues 2 (1 open — 1 closed)

Actions

#1

Updated by Dominic Cleal over 10 years ago

Category set to API
Status changed from New to Ready For Testing
Assignee set to Eric Helms
Target version set to 1.8.4

https://github.com/theforeman/foreman/pull/1331

Actions

#2

Updated by Dominic Cleal over 10 years ago

Related to Bug #4776: Accessing API does not seem to refresh cookie expiration added

Actions

#3

Updated by Dominic Cleal over 10 years ago

Related to Bug #4968: API with SSO access requires some CSRF protection added

Actions

#4

Updated by Dominic Cleal over 10 years ago

Translation missing: en.field_release set to 4

Actions

#5

Updated by Dominic Cleal over 10 years ago

Status changed from Ready For Testing to Closed
% Done changed from 0 to 100

Applied in changeset 73f99b5c79de3d2a6b65e8833c6be72117ca1257.

Actions

Also available in: Atom PDF