Details
-
Type:
Monitor
-
Status: Closed
-
Priority:
Major
-
Resolution: Done
-
Affects Version/s: None
-
Fix Version/s: 2021
-
Component/s: FIWARE-TECH-HELP
-
HD-Enabler:CKAN
Description
Created question in FIWARE Q/A platform on 12-02-2018 at 15:02
Please, ANSWER this question AT https://stackoverflow.com/questions/48748288/csrf-implementation-in-core-ckan-code
Question:
CSRF implementation in core CKAN code
Description:
This extension to CKAN could work to provide security features in CKAN. This extension provides Cookie-based CSRF protection for requests in CKAN. But according to this , it is not implemented as a part of core CKAN because the method used in this extension to provide CSRF protection is conflicting with the future plan of CKAN's own implementation of CSRF protection.
So, my question is
1. Is there any implementation of CSRF protection in core CKAN code?
2. What are different methods we can use to implement CSRF protection and what is the best method to implement it in core CKAN?
Activity
| Transition | Time In Source Status | Execution Times | Last Executer | Last Execution Date | |||||
|---|---|---|---|---|---|---|---|---|---|
|
6h | 1 | Backlog Manager | 12/Feb/18 9:05 PM | |||||
|
2h 59m | 1 | Backlog Manager | 13/Feb/18 12:05 AM | |||||
|
170d 15h 46m | 1 | Veronika Vlnkova | 02/Aug/18 4:52 PM |
