Disable CSRF if Reactive Bearer Token request #5710

jzheaux · 2018-08-21T14:43:56Z

No description provided.

This makes requests identified as bearer token requests skip the csrf filter. Fixes: spring-projectsgh-5710

This makes requests identified as bearer token requests skip the csrf filter. Fixes: gh-5710

jzheaux added Reactive in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) labels Aug 21, 2018

jzheaux added this to the 5.1.0.RC2 milestone Aug 21, 2018

rwinch modified the milestones: 5.1.0.RC2, General Backlog Aug 21, 2018

jzheaux modified the milestones: General Backlog, 5.1.0.RC2 Aug 21, 2018

jzheaux self-assigned this Aug 23, 2018

jzheaux added a commit to jzheaux/spring-security that referenced this issue Aug 23, 2018

Reactive Resource Server Csrf Bypass

c5e2218

This makes requests identified as bearer token requests skip the csrf filter. Fixes: spring-projectsgh-5710

jzheaux mentioned this issue Aug 23, 2018

Reactive Resource Server Csrf Bypass #5730

Merged

rwinch closed this as completed in #5730 Aug 24, 2018

rwinch pushed a commit that referenced this issue Aug 24, 2018

Reactive Resource Server Csrf Bypass

68d836d

This makes requests identified as bearer token requests skip the csrf filter. Fixes: gh-5710

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Disable CSRF if Reactive Bearer Token request #5710

Disable CSRF if Reactive Bearer Token request #5710

jzheaux commented Aug 21, 2018

Disable CSRF if Reactive Bearer Token request #5710

Disable CSRF if Reactive Bearer Token request #5710

Comments

jzheaux commented Aug 21, 2018