Paths

Table of Contentst

Tailor the CSRF check message for HTTP requests with "security.require-https"
AcceptedPublic
Actions

Authored by epriestley on Apr 13 2017, 2:55 PM.

Tags

None

Referenced Files

	F15417180: D17676.id42510.diff
	Thu, Mar 20, 3:51 PM

	F15413854: D17676.id.diff
	Wed, Mar 19, 9:44 PM

	F15408391: D17676.diff
	Tue, Mar 18, 10:43 PM

	F15396641: D17676.id42510.diff
	Sun, Mar 16, 3:34 PM

	F15394904: D17676.diff
	Sun, Mar 16, 2:32 AM

	F15322709: D17676.diff
	Thu, Mar 6, 11:58 PM

	F15285868: D17676.diff
	Tue, Mar 4, 4:34 PM

	Unknown Object (File)
	Sun, Mar 2, 11:51 PM

View All Files

Subscribers

None

Details

Reviewers

chad

Maniphest Tasks

T12547: Confusing error message when trying to register an account over HTTP with `security.require-https`

Summary

Ref T12547. See that task for discussion.

Test Plan

Changed storage.default-namespace to a new value.
Upgraded database.
Enabled security.require-https.
Registered over plain HTTP.
After patch, got a more tailored exception instead of the more general/misleading one from before.

Diff Detail

Repository

rP Phabricator

Branch

tailor1

Lint

Lint Passed

Unit

Tests Passed

Build Status

Buildable 16441
Build 21880: Run Core Tests
Build 21879: arc lint + arc unit

Event Timeline

epriestley created this revision.Apr 13 2017, 2:55 PM

Harbormaster completed remote builds in B16441: Diff 42510.Apr 13 2017, 2:56 PM

chad accepted this revision.Apr 13 2017, 3:05 PM

This revision is now accepted and ready to land.Apr 13 2017, 3:05 PM

Revision Contents
Changeset List

Path

Size

src/

aphront/

AphrontRequest.php

23 lines

Diff 42510

View Options

src/aphront/AphrontRequest.php

Tailor the CSRF check message for HTTP requests with "security.require-https"AcceptedPublicActions