lams-github / lams_build / lib

csrfguard

Clone Tools

Stats

Commits this week: 0
Total Committers: 3
Last Commit:
Commits this week: 0

Lines of code count not available

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Wednesday 20 Mar 2024
4:52 pm

Marcin Cieslak

LDEV-5440 Update libraries to new versions

Options
    • -1
    • +1
    ./csrf.module.xml
  2. … 70 more files in changeset.
Tuesday 20 Feb 2024
8:08 pm

Marcin Cieslak

LDEV-5440 Update CSRFGuard from 4.1.3 to 4.3.0-jakarta

Customisation was needed:

In CsrfGuardUtils use

public static String normalizeResourceURI(final String resourceURI) {

String normalizedResourceURI = resourceURI.startsWith("/") ? resourceURI : '/' + resourceURI;

// LAMS LDEV-4932 Replace multiple slashes with a single one, so it works the same as Spring MVC

normalizedResourceURI = normalizedResourceURI.replaceAll("/{2,}", "/");

return normalizedResourceURI;

}

Also update WF module schemas.

Options
    • -4
    • +4
    ./csrf.module.xml
    • binary
    ./csrfguard-4.1.3-custom-2022.04.03.jar
    • binary
    ./csrfguard-4.3.0-jakarta-custom.jar
    • binary
    ./csrfguard-extension-session-4.1.3.jar
    • binary
    ./csrfguard-extension-session-4.3.0-jakarta.jar
    • binary
    ./csrfguard-jsp-tags-4.1.3.jar
    • binary
    ./csrfguard-jsp-tags-4.3.0-jakarta.jar
  8. … 38 more files in changeset.
Sunday 03 Apr 2022
2:15 pm

Marcin Cieslak

LDEV-4932 Squash multiple slashes into one when matching secured paths

Options
    • -1
    • +1
    ./csrf.module.xml
    • binary
    ./csrfguard-4.1.3-custom-2022.04.03.jar
    • binary
    ./csrfguard-4.1.3.jar
  4. … 3 more files in changeset.
2:02 pm

Marcin Cieslak

LDEV-5304 Update CSRF Guard to version 4.1.3

Options
    • -1
    • +5
    ./csrf.module.xml
    • binary
    ./csrfguard-3.1.0-custom-2020.01.07.jar
    • binary
    ./csrfguard-4.1.3.jar
    • binary
    ./csrfguard-extension-session-4.1.3.jar
    • binary
    ./csrfguard-jsp-tags-4.1.3.jar
  6. … 2 more files in changeset.
Tuesday 07 Jan 2020
5:31 pm

Marcin Cieslak

LDEV-4932 Squash multiple slashes into one when matching secured paths

Options
    • -1
    • +1
    ./csrf.module.xml
    • binary
    ./csrfguard-3.1.0-2019.12.19.jar
    • binary
    ./csrfguard-3.1.0-custom-2020.01.07.jar
Thursday 19 Dec 2019
11:01 pm

Marcin Cieslak

Revert "LDEV-4932 Initial integration of CSRF Guard"

This reverts commit c5a709e4cb42d0729ad3fbd814714fb27dd844df.

It should have been in a separate branch.

Options
    • -34
    • +0
    ./csrf.module.xml
    • binary
    ./csrfguard-3.1.0-2019.12.19.jar
  3. … 8 more files in changeset.
11:00 pm

Marcin Cieslak

LDEV-4932 Initial integration of CSRF Guard

Add library and configuration file. Only Edit Profile form has a token

injected into form. Other POSTed forms will be stopped by the Guard,

with an error logged.

Options
    • -0
    • +34
    ./csrf.module.xml
    • binary
    ./csrfguard-3.1.0-2019.12.19.jar
  3. … 8 more files in changeset.
11:00 pm

Marcin Cieslak

LDEV-4932 Initial integration of CSRF Guard

Add library and configuration file. Only Edit Profile form has a token

injected into form. Other POSTed forms will be stopped by the Guard,

with an error logged.

Options
    • -0
    • +34
    ./csrf.module.xml
    • binary
    ./csrfguard-3.1.0-2019.12.19.jar
  3. … 8 more files in changeset.