Paths

Table of Contentst

Tailor the CSRF check message for HTTP requests with "security.require-https"
AcceptedPublic
Actions

Authored by epriestley on Apr 13 2017, 2:55 PM.

Tags

None

Referenced Files

	F15525414: D17676.id42510.diff
	Mon, Apr 21, 2:13 PM

	F15522799: D17676.diff
	Sun, Apr 20, 9:29 PM

	F15519123: D17676.id.diff
	Sat, Apr 19, 8:05 PM

	F15516618: D17676.diff
	Fri, Apr 18, 8:01 PM

	F15417180: D17676.id42510.diff
	Mar 20 2025, 3:51 PM

	F15413854: D17676.id.diff
	Mar 19 2025, 9:44 PM

	F15408391: D17676.diff
	Mar 18 2025, 10:43 PM

	F15396641: D17676.id42510.diff
	Mar 16 2025, 3:34 PM

View All Files

Subscribers

None

Details

Reviewers

chad

Maniphest Tasks

T12547: Confusing error message when trying to register an account over HTTP with `security.require-https`

Summary

Ref T12547. See that task for discussion.

Test Plan

Changed storage.default-namespace to a new value.
Upgraded database.
Enabled security.require-https.
Registered over plain HTTP.
After patch, got a more tailored exception instead of the more general/misleading one from before.

Diff Detail

Repository

rP Phabricator

Branch

tailor1

Lint

Lint Passed

Unit

Tests Passed

Build Status

Buildable 16441
Build 21880: Run Core Tests
Build 21879: arc lint + arc unit

Event Timeline

epriestley created this revision.Apr 13 2017, 2:55 PM

Harbormaster completed remote builds in B16441: Diff 42510.Apr 13 2017, 2:56 PM

chad accepted this revision.Apr 13 2017, 3:05 PM

This revision is now accepted and ready to land.Apr 13 2017, 3:05 PM

Revision Contents
Changeset List

Path

Size

src/

aphront/

AphrontRequest.php

23 lines

Diff 42510

View Options

src/aphront/AphrontRequest.php

Tailor the CSRF check message for HTTP requests with "security.require-https"AcceptedPublicActions