Uploaded image for project: 'Archiva (Retired)'
  1. Archiva (Retired)
  2. MRM-1445

disable referrer check by default

    XMLWordPrintableJSON

Details

    • Task
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 1.3.2
    • 1.3.3
    • Users/Security
    • None

    Description

      The redback referrer header check that was added can occasionally cause problems, and is only a preventative measure for other CSRF vulnerabilities.

      It should be disabled by default, but the configuration for enabling it documented.

      Attachments

        Activity

          People

            brett Brett Porter
            brett Brett Porter
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: