[jira] Commented: (WICKET-1782) Protection against CSRF (cross-site request forgery) attacks

2008-09-21 Thread Kent Tong (JIRA)
[ https://issues.apache.org/jira/browse/WICKET-1782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=12633146#action_12633146 ] Kent Tong commented on WICKET-1782: --- Is it enough to make sure the pagemap id

[jira] Commented: (WICKET-1782) Protection against CSRF (cross-site request forgery) attacks

2008-08-25 Thread Igor Vaynberg (JIRA)
[ https://issues.apache.org/jira/browse/WICKET-1782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=12625459#action_12625459 ] Igor Vaynberg commented on WICKET-1782: --- in the near future is all i can say. if you

[jira] Commented: (WICKET-1782) Protection against CSRF (cross-site request forgery) attacks

2008-08-08 Thread Johan Compagner (JIRA)
[ https://issues.apache.org/jira/browse/WICKET-1782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=12620920#action_12620920 ] Johan Compagner commented on WICKET-1782: - about 1: include a random token in

[jira] Commented: (WICKET-1782) Protection against CSRF (cross-site request forgery) attacks

2008-08-08 Thread Igor Vaynberg (JIRA)
[ https://issues.apache.org/jira/browse/WICKET-1782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=12620932#action_12620932 ] Igor Vaynberg commented on WICKET-1782: --- yeah, hdiv guys already mentioned they

[jira] Commented: (WICKET-1782) Protection against CSRF (cross-site request forgery) attacks

2008-08-08 Thread Johan Compagner (JIRA)
[ https://issues.apache.org/jira/browse/WICKET-1782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=12620937#action_12620937 ] Johan Compagner commented on WICKET-1782: - do we have a jsessionid always?