Seull1 closed pull request #695: 20.0.0/super tomcat
URL: https://github.com/apache/tomcat/pull/695
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
papercrane55123 closed pull request #689: Super-Tomcat
URL: https://github.com/apache/tomcat/pull/689
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
pySatellite commented on PR #691:
URL: https://github.com/apache/tomcat/pull/691#issuecomment-1945200861
Sorry, I sent you the wrong PR to the branch created for learning. I'm
always using TOMCAT well as a Java developer. Thank you, I'll end that PR.
--
This is an automated message from
pySatellite closed pull request #691: super super
URL: https://github.com/apache/tomcat/pull/691
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
dhkdtld37 closed pull request #688: fix README.md
URL: https://github.com/apache/tomcat/pull/688
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
parc02 commented on PR #693:
URL: https://github.com/apache/tomcat/pull/693#issuecomment-1945198656
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the
parc02 commented on PR #694:
URL: https://github.com/apache/tomcat/pull/694#issuecomment-1945197670
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the
temp12312yeap opened a new pull request, #696:
URL: https://github.com/apache/tomcat/pull/696
(no comment)
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe,
Jaelinny opened a new pull request, #693:
URL: https://github.com/apache/tomcat/pull/693
first~
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
hyunsungJoo opened a new pull request, #692:
URL: https://github.com/apache/tomcat/pull/692
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on
parc02 opened a new pull request, #690:
URL: https://github.com/apache/tomcat/pull/690
--
This is an automated message from the Apache Git Service.
To respond to the message, please log
papercrane55123 closed pull request #689: Super-Tomcat
URL: https://github.com/apache/tomcat/pull/689
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
dhkdtld37 opened a new pull request, #688:
URL: https://github.com/apache/tomcat/pull/688
fix README.md
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe,
Woellchen commented on PR #687:
URL: https://github.com/apache/tomcat/pull/687#issuecomment-1932961663
Alright, I guess I got this wrong then, thanks for your detailed
explanations.
In case others are wondering about the same issue I found two bugs for
reference on prominent software
markt-asf commented on PR #687:
URL: https://github.com/apache/tomcat/pull/687#issuecomment-1932891346
Nope, `%2F` is NOT equivalent to `/` in a URI as explained in section 2.2 of
RFC 3986.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log
Woellchen commented on PR #687:
URL: https://github.com/apache/tomcat/pull/687#issuecomment-1932841669
Thanks for checking back! The section you are referring to does not really
negate my statement however. If I get you right you are talking about this
specific thing?
> These URIs
markt-asf commented on PR #687:
URL: https://github.com/apache/tomcat/pull/687#issuecomment-1932635647
Nope. Read the RFC again. Specifically 6.2.2.2.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to
Woellchen commented on PR #687:
URL: https://github.com/apache/tomcat/pull/687#issuecomment-1932522774
Could you please elaborate how a URI is not user input and how it can be
prevented that a user calls a URI on a web application? I can't follow you.
Relative paths are explicitly
rmaucher commented on PR #687:
URL: https://github.com/apache/tomcat/pull/687#issuecomment-1932491567
URL processing and mapping has to follow a lot of rules from specifications
to avoid inconsistencies which would be security issues. So this is one of them.
Indeed creative encoding can
rmaucher closed pull request #687: Decode and normalize URIs before processing
them
URL: https://github.com/apache/tomcat/pull/687
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific
Woellchen opened a new pull request, #687:
URL: https://github.com/apache/tomcat/pull/687
URIs must be at least decoded in order to process sub-delims as defined in
RFC 3986, because slashes and their encoded counterparts are equivalent when
processing paths. Normalization before the
Hakky54 commented on PR #673:
URL: https://github.com/apache/tomcat/pull/673#issuecomment-1932206483
Thank you mate, I really appreciate this! Big kudos! 拾
I am looking forward to the new release!
--
This is an automated message from the Apache Git Service.
To respond to the message,
markt-asf commented on PR #673:
URL: https://github.com/apache/tomcat/pull/673#issuecomment-1932089608
OK, it is in main. I'll back-port as well.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to
markt-asf commented on PR #673:
URL: https://github.com/apache/tomcat/pull/673#issuecomment-1931990842
I have some ideas on how to address this. I might have a fix for this soon
that takes account of the lifecycle issues.
--
This is an automated message from the Apache Git Service.
To
Hakky54 commented on PR #673:
URL: https://github.com/apache/tomcat/pull/673#issuecomment-1931967568
Ah that is pity, I was looking forward to it. You have a better overview of
the issues which it can cause to other functionalities. I was not aware of the
lifecycle management and only
markt-asf commented on PR #673:
URL: https://github.com/apache/tomcat/pull/673#issuecomment-1931686883
I was tempted to merge this but having reviewed the Tomcat code I think this
is going to create problems - the main one being that Tomcat clears the
SSLContext on Connector.stop() when
markt-asf closed pull request #673: Added option to use custom SSLContext
URL: https://github.com/apache/tomcat/pull/673
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To
markt-asf commented on PR #686:
URL: https://github.com/apache/tomcat/pull/686#issuecomment-1931626326
WONTFIX - As per section 2.3.3.4 applications are responsible for accessing
the request in a thread safe manner.
--
This is an automated message from the Apache Git Service.
To respond
markt-asf closed pull request #686: Add a fallback when people use Parameters
class concurrently, to avoid lost params
URL: https://github.com/apache/tomcat/pull/686
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
Hakky54 commented on PR #673:
URL: https://github.com/apache/tomcat/pull/673#issuecomment-1929460593
Hi team, is there any progress on this topic. Is there something what I can
do on my side? Like backporting to other branches or anything else maybe?
--
This is an automated message from
ChristopherSchultz commented on PR #683:
URL: https://github.com/apache/tomcat/pull/683#issuecomment-1924044806
> > Fixed and back-ported. Will be in the February releases.
>
> Hi @markt-asf,What channel can I use to know that this problem has been
fixed? Thank you very much.
chenbiaoit commented on PR #683:
URL: https://github.com/apache/tomcat/pull/683#issuecomment-1923029828
> Fixed and back-ported. Will be in the February releases.
Hi @markt-asf,What channel can I use to know that this problem has been
fixed? Thank you very much.
--
This is an
ChristopherSchultz merged PR #681:
URL: https://github.com/apache/tomcat/pull/681
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
DanielThomas commented on issue #48:
URL:
https://github.com/apache/tomcat-jakartaee-migration/issues/48#issuecomment-1913758414
Some improvements got made to this mitigation in later JDK releases, due to
false positives in the detection, so I think this has been addressed upstream.
--
markt-asf closed pull request #685: Update to use JakartaExpressionLanguage
osgi.contract
URL: https://github.com/apache/tomcat/pull/685
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific
markt-asf commented on PR #685:
URL: https://github.com/apache/tomcat/pull/685#issuecomment-1910685730
Broader fix applied.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
markt-asf commented on PR #685:
URL: https://github.com/apache/tomcat/pull/685#issuecomment-1910670058
Thanks for reporting this.
Looks like most of the embedded JARs got missed but EL was updated for
embedded but not the standalone JAR in BZ 66834. I have a fix I'll push shortly
that
ConiKost opened a new pull request, #8:
URL: https://github.com/apache/tomcat-connectors/pull/8
On musl, sys/socketvar.h does not exist, so we need to make sure, not to use
it.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub
pnicolucci opened a new pull request, #685:
URL: https://github.com/apache/tomcat/pull/685
I opened: https://bz.apache.org/bugzilla/show_bug.cgi?id=66834 last year and
upon looking at the latest M16 release of Expression Language 6.0 here:
imario42 commented on PR #683:
URL: https://github.com/apache/tomcat/pull/683#issuecomment-1899854047
Thanks a lot @markt-asf for tackling and fixing it and @lbliangbin for the
analysis.
--
This is an automated message from the Apache Git Service.
To respond to the message, please
markt-asf commented on PR #682:
URL: https://github.com/apache/tomcat/pull/682#issuecomment-1899075283
Tx. I'll back-port this fix shortly.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the
markt-asf merged PR #682:
URL: https://github.com/apache/tomcat/pull/682
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
markt-asf commented on PR #683:
URL: https://github.com/apache/tomcat/pull/683#issuecomment-1899074074
Fixed and back-ported. Will be in the February releases.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
markt-asf closed pull request #683: Fix websocket processor leaks when
WsSession expires and server sends close message by WsBackgroundThread
URL: https://github.com/apache/tomcat/pull/683
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on
markt-asf commented on PR #683:
URL: https://github.com/apache/tomcat/pull/683#issuecomment-189414
The description of the problem and the analysis of the root cause (the BZ
66508 fix) is correct but the proposed fix is not. It will probably work the
majority of the time but there is a
markt-asf commented on PR #683:
URL: https://github.com/apache/tomcat/pull/683#issuecomment-1898853883
Thanks. The reference to the description on the users list helps. I'll look
at this again.
--
This is an automated message from the Apache Git Service.
To respond to the message, please
imario42 commented on PR #683:
URL: https://github.com/apache/tomcat/pull/683#issuecomment-1898787616
@markt-asf : He described his findings in that tomcat-user post
[https://lists.apache.org/thread/vyog0dyxwq3hlpjgt2vb1wkrxw6x2h1k](url)
However, I do not know if his patch works.
markt-asf closed pull request #683: Fix websocket processor leaks when
WsSession expires and server sends close message by WsBackgroundThread
URL: https://github.com/apache/tomcat/pull/683
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on
markt-asf commented on PR #683:
URL: https://github.com/apache/tomcat/pull/683#issuecomment-1898765701
No evidence provided to support claim of a leak.
No leak observed when testing with profiler.
No obvious reason that proposed patch would impact `UpgradeProcessor`
instances (or
markt-asf merged PR #1:
URL: https://github.com/apache/tomcat-tck/pull/1
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail:
fhanik opened a new pull request, #1:
URL: https://github.com/apache/tomcat-tck/pull/1
Fix header typo
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe,
dependabot[bot] commented on PR #680:
URL: https://github.com/apache/tomcat/pull/680#issuecomment-1893441318
OK, I won't notify you again about this release, but will get in touch when
a new version is available. If you'd rather skip all updates until the next
major or minor version, let
markt-asf commented on PR #680:
URL: https://github.com/apache/tomcat/pull/680#issuecomment-1893441250
Out of date
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To
markt-asf closed pull request #680: Bump org.apache.tomcat:tomcat-catalina from
10.1.15 to 10.1.16 in /modules/owb
URL: https://github.com/apache/tomcat/pull/680
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
jjohannes commented on PR #684:
URL: https://github.com/apache/tomcat/pull/684#issuecomment-1891752142
Thanks @markt-asf!
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
markt-asf commented on PR #684:
URL: https://github.com/apache/tomcat/pull/684#issuecomment-1891608646
Fixed manually in main for 11.0.x (with change log entry) and then
back-ported (cherry-picked) to 10.1.x and 9.0.x.
--
This is an automated message from the Apache Git Service.
To
markt-asf closed pull request #684: Remove org.apache.catalina.ssi from
tomcat-embed-core.jar.tmp.bnd
URL: https://github.com/apache/tomcat/pull/684
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to
jjohannes opened a new pull request, #684:
URL: https://github.com/apache/tomcat/pull/684
This package no longer exits in `tomcat-embed-core.jar`. It is in the
'module-info.class' of the current `10.1.18` and earlier `10.x` releases.
Running `jlink` or `jpackage` with a Module Path
lbliangbin closed pull request #683: Fix websocket processor leaks when
WsSession expires and server send …
URL: https://github.com/apache/tomcat/pull/683
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to
janbrasna opened a new pull request, #682:
URL: https://github.com/apache/tomcat/pull/682
Trivial wording fix for config docs.
_(Unfortunately goes all the way back to `9.0.x` and `8.5.x`)_
--
This is an automated message from the Apache Git Service.
To respond to the message,
ChristopherSchultz commented on PR #681:
URL: https://github.com/apache/tomcat/pull/681#issuecomment-1875476100
> > Re 4: I think that if one is wise enough to write a RegExp, they could
use "|" to combine several patterns, and do not really need splitting by comma.
>
> I suppose if
isapir commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437906912
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
private
isapir commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437905241
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -110,45 +285,70 @@ public void doFilter(ServletRequest request,
ServletResponse response, FilterCha
isapir commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437903976
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437901624
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437900565
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437899157
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437898144
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437898048
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437897171
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1437896682
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -110,45 +285,70 @@ public void doFilter(ServletRequest request,
ServletResponse response,
michael-o commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1436107052
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
isapir commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1435945699
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
isapir commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1435945537
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -110,45 +285,70 @@ public void doFilter(ServletRequest request,
ServletResponse response, FilterCha
isapir commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1435943790
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
isapir commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1435943366
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
michael-o commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1434524088
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -87,11 +104,170 @@ public void setNonceRequestParameterName(String
parameterName) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1434521612
##
webapps/docs/config/filter.xml:
##
@@ -319,6 +326,34 @@
of java.security.SecureRandom will be used.
+
+A list of URL
michael-o commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1434518590
##
webapps/docs/config/filter.xml:
##
@@ -291,6 +291,13 @@
request. The default value is 403.
+
+A flag to enable or disable
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1434514917
##
webapps/docs/config/filter.xml:
##
@@ -291,6 +291,13 @@
request. The default value is 403.
+
+A flag to enable or disable
michael-o commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1434513367
##
webapps/docs/config/filter.xml:
##
@@ -319,6 +326,34 @@
of java.security.SecureRandom will be used.
+
+A list of URL patterns that
michael-o commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1434512783
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -198,15 +416,27 @@ protected boolean skipNonceCheck(HttpServletRequest
request) {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1434511388
##
webapps/docs/config/filter.xml:
##
@@ -319,6 +326,34 @@
of java.security.SecureRandom will be used.
+
+A list of URL
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1434510673
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -198,15 +416,27 @@ protected boolean skipNonceCheck(HttpServletRequest
request) {
michael-o commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1433225531
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -198,15 +416,27 @@ protected boolean skipNonceCheck(HttpServletRequest
request) {
ChristopherSchultz commented on PR #681:
URL: https://github.com/apache/tomcat/pull/681#issuecomment-1864951885
> Re 4: I think that if one is wise enough to write a RegExp, they could use
"|" to combine several patterns, and do not really need splitting by comma. Or
do you envision a use
kkolinko commented on PR #681:
URL: https://github.com/apache/tomcat/pull/681#issuecomment-1864889547
Re 8: Whatever is easier.
(Maybe it will be easier to extract some logic into an utility class and
test that utility class. My concern is just that the logic is not trivial, is
kkolinko commented on PR #681:
URL: https://github.com/apache/tomcat/pull/681#issuecomment-1864873921
Re 4: I think that if one is wise enough to write a RegExp, they could use
"|" to combine several patterns, and do not really need splitting by comma. Or
do you envision a use case, where
ChristopherSchultz commented on PR #681:
URL: https://github.com/apache/tomcat/pull/681#issuecomment-1864828084
> 1. There are case-insensitive file systems out there... I wonder whether
those default extensions should be treated case-insensitively. (If one is
serving a web site from an
kkolinko commented on PR #681:
URL: https://github.com/apache/tomcat/pull/681#issuecomment-1864808958
1. There are case-insensitive file systems out there... I wonder whether
those default extensions should be treated case-insensitively. (If one is
serving a web site from an USB stick or a
michael-o commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1432909931
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1432880460
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1432856054
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1432853641
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
michael-o commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1432402971
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
markt-asf commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1431736198
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1431641166
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1431639832
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1431618064
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
ChristopherSchultz commented on code in PR #681:
URL: https://github.com/apache/tomcat/pull/681#discussion_r1431615348
##
java/org/apache/catalina/filters/CsrfPreventionFilter.java:
##
@@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends
CsrfPreventionFilterBase {
201 - 300 of 1144 matches
Mail list logo
