FWIW I completely endorse John's actions below. This 'security' measure is pointless. I wish OT would have spent the dev time/money on actually improving the product. What a shame... 😓
Richard. -----Original Message----- From: "RustyLogic" <j...@rustylogic.com> Sent: ‎28/‎02/‎2014 23:22 To: "reddot-cms-users@googlegroups.com" <reddot-cms-users@googlegroups.com> Subject: Re: Set referer to execute plugin using user-defined job I hate the new 'security' so I turned it off... Disabling the new RedDot security Enjoy! On Monday, February 24, 2014 11:15:45 AM UTC, Pierre Kruppik wrote: Hi! Since security-raled changes (CSRF) it is not possible to execute a plugin using a user-defined job (call url). I just added the referer to the header of my plugin, but it doesnt works. <% Response.AddHeader "Referer","http://myhost/cms/" %> Are there any restrictions in the IIS? Regards, Pierre -- You received this message because you are subscribed to the Google Groups "RedDot CMS Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to reddot-cms-users+unsubscr...@googlegroups.com. To post to this group, send email to reddot-cms-users@googlegroups.com. Visit this group at http://groups.google.com/group/reddot-cms-users. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups "RedDot CMS Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to reddot-cms-users+unsubscr...@googlegroups.com. To post to this group, send email to reddot-cms-users@googlegroups.com. Visit this group at http://groups.google.com/group/reddot-cms-users. For more options, visit https://groups.google.com/groups/opt_out.