Bug #3793
Protect remove auth provider views from CSRF attacks
Status: | New | Start date: | 05/22/2013 | |
---|---|---|---|---|
Priority: | High | Due date: | ||
Assignee: | Olga Brani | % Done: | 0% |
|
Category: | Astakos | Spent time: | - | |
Target version: | 0.14.0 |
Description
Convert provider removal links to forms (using POST), in order to be able to remove GET from the remove view allowed HTTP methods.
Associated revisions
astakos: Change auth provider remove HTTP method
Convert provider removal links to forms (using POST), in order to be able
to remove GET from the remove view allowed HTTP methods.
Refs #3793