Page MenuHomePhabricator

Tailor the CSRF check message for HTTP requests with "security.require-https"
AcceptedPublic

Authored by epriestley on Apr 13 2017, 2:55 PM.
Tags
None
Referenced Files
Unknown Object (File)
May 7 2025, 4:57 AM
Unknown Object (File)
Apr 21 2025, 2:13 PM
Unknown Object (File)
Apr 20 2025, 9:29 PM
Unknown Object (File)
Apr 19 2025, 8:05 PM
Unknown Object (File)
Apr 18 2025, 8:01 PM
Unknown Object (File)
Mar 20 2025, 3:51 PM
Unknown Object (File)
Mar 19 2025, 9:44 PM
Unknown Object (File)
Mar 18 2025, 10:43 PM
Subscribers
None

Details

Summary

Ref T12547. See that task for discussion.

Test Plan
  • Changed storage.default-namespace to a new value.
  • Upgraded database.
  • Enabled security.require-https.
  • Registered over plain HTTP.
  • After patch, got a more tailored exception instead of the more general/misleading one from before.

Diff Detail

Repository
rP Phabricator
Branch
tailor1
Lint
Lint Passed
Unit
Tests Passed
Build Status
Buildable 16441
Build 21880: Run Core Tests
Build 21879: arc lint + arc unit