Index: lams_central/web/WEB-INF/web.xml
===================================================================
diff -u -r24f0886e73317ee6aa7b49eb70e3c2ad8c8f35f4 -r9cbba0026b9584b2e4bcba57f0d5a8510bdb5846
--- lams_central/web/WEB-INF/web.xml (.../web.xml) (revision 24f0886e73317ee6aa7b49eb70e3c2ad8c8f35f4)
+++ lams_central/web/WEB-INF/web.xml (.../web.xml) (revision 9cbba0026b9584b2e4bcba57f0d5a8510bdb5846)
@@ -41,6 +41,14 @@
parentContextKey
context.central
+
+ Owasp.CsrfGuard.Config
+ WEB-INF/Owasp.CsrfGuard.properties
+
+
+ Owasp.CsrfGuard.Config.Print
+ true
+
UrlRewriteFilter
@@ -69,6 +77,10 @@
org.lamsfoundation.lams.web.filter.LocaleFilter
+
+ CSRFGuard
+ org.owasp.csrfguard.CsrfGuardFilter
+
UrlRewriteFilter
@@ -147,7 +159,12 @@
LocaleFilter
/ckeditor/*
-
+
+ CSRFGuard
+ *.do
+
+
+
org.springframework.web.context.ContextLoaderListener
@@ -160,6 +177,13 @@
+
+ org.owasp.csrfguard.CsrfGuardServletContextListener
+
+
+ org.owasp.csrfguard.CsrfGuardHttpSessionListener
+
+
GetRecordingServlet
org.lamsfoundation.lams.webservice.GetRecordingServlet
@@ -497,6 +521,9 @@
/services/SPEnrolment
+
+
+
csv
text/plain
@@ -521,6 +548,11 @@
+
+ *.jsp
+ UTF-8
+ text/html; charset=UTF-8
+
@@ -560,6 +592,13 @@
tags-lams
/WEB-INF/tlds/lams/lams.tld
+
+
+
+
+ csrfguard
+ /WEB-INF/tlds/security/csrfguard.tld
+