Matthias Grundmann
|
97f66545e0
|
In CSRF-3 use POST instead of GET to prevent solving the assignment just by opening the URL in a new tab
|
2019-07-12 17:25:58 +02:00 |
|
Matthias Grundmann
|
c7da546249
|
Improve text for lesson about CSRF login
|
2018-06-16 17:52:18 +02:00 |
|
misfir3
|
701a99cf8f
|
Merge pull request #487 from matthias-g/xssFixes
Small lesson improvements
|
2018-06-13 18:42:14 -06:00 |
|
Matthias Grundmann
|
e5ec2c1ee0
|
Fix html attribute
|
2018-06-13 17:56:57 +02:00 |
|
Matthias Grundmann
|
3b9b695ef1
|
Check host header instead of origin which might not be present #475
|
2018-06-13 11:38:33 +02:00 |
|
Nanne Baars
|
1edceb0aa8
|
Extended and fixed some lessons
|
2018-05-27 20:37:44 +02:00 |
|
Nanne Baars
|
ea9c1a453d
|
Initial version for JWT
|
2018-05-23 14:28:19 +02:00 |
|
miig
|
5d28ef9fbe
|
small fix for CSRF content type lesson descrption
|
2018-05-02 22:10:06 +02:00 |
|
nbaars
|
b99b554522
|
Version: docker 8.0.0.M9 Multiple users can't finalize the same lesson #432
|
2018-01-29 15:29:48 +01:00 |
|
Nanne Baars
|
43b82027f5
|
Added more content for CSRF lesson
|
2017-11-22 01:34:05 +01:00 |
|
Jason White
|
49c3008fe2
|
Typo fix for CSRF content
|
2017-10-13 10:33:38 -06:00 |
|
Jason White
|
8d488c6ac6
|
More CSRF Updates
|
2017-10-13 09:28:41 -06:00 |
|
Jason White
|
b03a32f92c
|
update to do CSRF-based comment forging
|
2017-10-12 18:17:48 -06:00 |
|
Jason White
|
b156d81535
|
Initial cut on CSRF. More to come
|
2017-10-11 20:06:57 -06:00 |
|
Jason White
|
ac16342c17
|
#315 Adding UI handling and corresponding expected elements for html files for decoration. Inlucdes minor refactor
|
2017-01-25 17:46:31 +01:00 |
|
Nanne Baars
|
c80bfcbc2f
|
First checkin for CSRF
(cherry picked from commit a01a767)
|
2016-11-23 17:09:35 +01:00 |
|