Closed Bug 881346 Opened 12 years ago Closed 12 years ago

enable CSRF for sso-ux.js

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: michiel, Unassigned)

References

Details

Attachments

(1 file)

https://github.com/mozilla/login.webmaker.org/pull/93 12 years ago Pomax 53 bytes, text/x-github-pull-request	jon : review+	Details \| Review

Pomax

Reporter

Description

•

12 years ago

sso-ux.js currently has CSRF enabled only for the login operation, rather than for all ajax operations.

Pomax

Reporter

Updated

•

12 years ago

Blocks: 861384

Pomax

Reporter

Comment 1

•

12 years ago

Attached file https://github.com/mozilla/login.webmaker.org/pull/93 — Details

not sure who added the csrf for login, feel free to reassign.

Attachment #760472 - Flags: review?(jon)

Jon Buckley [:jbuck]

Updated

•

12 years ago

Attachment #760472 - Flags: review?(jon) → review+

[github robot]

Comment 2

•

12 years ago

Commit pushed to master at https://github.com/mozilla/login.webmaker.org https://github.com/mozilla/login.webmaker.org/commit/206609124f38b5837ca692eb239a714f37562975 Merge pull request #93 from Pomax/bug881346 added universal CSRF to jQuery

Pomax

Reporter

Updated

•

12 years ago

Status: NEW → RESOLVED

Closed: 12 years ago

Resolution: --- → FIXED

Nobody; OK to take it and work on it

Assignee

Updated

•

12 years ago

Attachment mime type: text/plain → text/x-github-pull-request

You need to log in before you can comment on or make changes to this bug.

Bugzilla

enable CSRF for sso-ux.js

Categories

(Webmaker Graveyard :: Login, defect)

Tracking

(Not tracked)

People

(Reporter: michiel, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Updated

Comment 1

Updated

Comment 2

Updated

Updated

Attachment

General

Description

File Name

Content Type