[jira] [Created] (SLING-3469) Provide out of the box CSRF protection

Ravi Teja (JIRA) Wed, 19 Mar 2014 23:21:06 -0700

Ravi Teja created SLING-3469:
--------------------------------

             Summary: Provide out of the box CSRF protection
                 Key: SLING-3469
                 URL: https://issues.apache.org/jira/browse/SLING-3469
             Project: Sling
          Issue Type: Improvement
            Reporter: Ravi Teja



One such vulnerability can found on the default login form for 
FormBasedAuthenticationHandler.

Grails framework has implemented this protection using custom tag library and 
filters. Ref: http://grails.org/doc/2.2.1/ref/Tags/form.html



--
This message was sent by Atlassian JIRA
(v6.2#6252)

[jira] [Created] (SLING-3469) Provide out of the box CSRF protection

Reply via email to