Project

General

Profile

Actions

Bug #4895

closed

API should check for the presence of a CSRF token when there is a session user

Added by Eric Helms about 10 years ago. Updated over 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
API
Target version:
Difficulty:
Triaged:
Fixed in Releases:
Found in Releases:

Related issues 2 (1 open1 closed)

Related to Foreman - Bug #4776: Accessing API does not seem to refresh cookie expirationClosedBrad Buckingham03/21/2014Actions
Related to Foreman - Bug #4968: API with SSO access requires some CSRF protectionNew03/31/2014Actions
Actions #1

Updated by Dominic Cleal about 10 years ago

  • Category set to API
  • Status changed from New to Ready For Testing
  • Assignee set to Eric Helms
  • Target version set to 1.8.4
Actions #2

Updated by Dominic Cleal almost 10 years ago

  • Related to Bug #4776: Accessing API does not seem to refresh cookie expiration added
Actions #3

Updated by Dominic Cleal almost 10 years ago

  • Related to Bug #4968: API with SSO access requires some CSRF protection added
Actions #4

Updated by Dominic Cleal almost 10 years ago

  • translation missing: en.field_release set to 4
Actions #5

Updated by Dominic Cleal almost 10 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions

Also available in: Atom PDF