security-and-privacy/ldapcherry
security-and-privacy/ldapcherry
1
0
Fork 0
mirror of https://github.com/kakwa/ldapcherry synced 2024-06-24 12:42:56 +02:00
Code Releases Activity
703 Commits 3 Branches 22 Tags 1.7 MiB
8be228f142
Commit Graph

6 Commits

Author SHA1 Message Date
Quentin Legrand
8be228f142 Add CSRF protection to all forms 2019-06-13 13:57:44 +02:00
John Thiltges
6f98076281 Protect against XSS vulnerabilities in URL redirection 
- Switch from base64 to URL encoding for the passing the URL, using the built-in Mako filtering
- Apply HTML filtering to Mako output by default
- Disable HTML filtering for nested templates in adduser, modify, and selfmodify
 2019-01-02 14:31:10 -06:00
kakwa
1f0cc50d58 adding a redirected to the originaly requested page on login 
user not authenticated and requesting an url are redirected to
the signin page with the requested page url as the query string (in
base64). It permits to redirect them to the requested page once they
've log in.
 2015-07-06 07:58:27 +02:00
kakwa
d9031f0994 fix missing </span> in login form 2015-07-05 16:32:18 +02:00
kakwa
147cad3511 fix unicode 2015-06-27 22:35:34 +02:00
kakwa
d6bb5c38ed begin implementation of the main application 2015-05-18 19:56:44 +02:00