Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Prevent potential infinite redirection loop when saving the deactivation of deprecated browser warning

Download Browse

This contribution makes sure the page saving the deactivation of the banner can only be called with a POST request as all state changing actions should. It also makes sure that if the CSRf verification fails, the user is redirected to an existing page. Fix request #13428: Make sure the page /account/disable_ie7_warning.php does not go in a infinite redirection loop when the CSRF verification fails Change-Id: I9126b21724760e243adec3ef6719f3471c47aa1f

+58 −36
Thomas Gerbet (tgerbet) 2019-05-27 14:48
Thomas Gerbet (tgerbet) 2019-05-29 08:59
2293e3eebc4e16544c3a51e821f2d2a2b82826b8
33f671ae5a674ddf62ed115ef3ee6c2e5dc60afb
git #tuleap/stable/2293e3eebc4e16544c3a51e821f2d2a2b82826b8

Modified Files

Side by side diff
Inline diff
Name
M site-content/en_US/include/include.tab +0 −1 Go to diff View file
M site-content/fr_FR/LC_MESSAGES/tuleap-core.po +4 −0 Go to diff View file
M site-content/fr_FR/include/include.tab +0 −1 Go to diff View file
M src/common/Request/RouteCollector.php +7 −0 Go to diff View file
A src/common/User/Account/DisableLegacyBrowsersWarningMessageController.php +44 −0 Go to diff View file
M src/common/include/BrowserIEDeprecated.php +3 −3 Go to diff View file
D src/www/account/disable_ie7_warning.php +0 −31 Go to diff View file