On Thursday, 23 November 2017 16:07:11 UTC, sri wrote:
> I could only take a quick look, but i think some of the login code might be > insecure. > > > https://github.com/duffee/Mojolicious_session_example/blob/master/ldap/lib/LDAP/Controller/Secure.pm#L43-L52 > > That should return a false value after the $self->render call to break the > dispatch chain. > > Thanks Sebastian, I've checked all the files with that method to make sure they return false. I'll be checking the other methods tonight. The file you referenced has since been moved to the old_files directory. cheers, Boyd -- You received this message because you are subscribed to the Google Groups "Mojolicious" group. To unsubscribe from this group and stop receiving emails from it, send an email to mojolicious+unsubscr...@googlegroups.com. To post to this group, send email to mojolicious@googlegroups.com. Visit this group at https://groups.google.com/group/mojolicious. For more options, visit https://groups.google.com/d/optout.
