Paths

Table of Contentst

Tailor the CSRF check message for HTTP requests with "security.require-https"
AcceptedPublic
Actions

Authored by epriestley on Apr 13 2017, 2:55 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	May 7 2025, 4:57 AM

	Unknown Object (File)
	Apr 21 2025, 2:13 PM

	Unknown Object (File)
	Apr 20 2025, 9:29 PM

	Unknown Object (File)
	Apr 19 2025, 8:05 PM

	Unknown Object (File)
	Apr 18 2025, 8:01 PM

	Unknown Object (File)
	Mar 20 2025, 3:51 PM

	Unknown Object (File)
	Mar 19 2025, 9:44 PM

	Unknown Object (File)
	Mar 18 2025, 10:43 PM

View All Files

Subscribers

None

Details

Reviewers

chad

Maniphest Tasks

T12547: Confusing error message when trying to register an account over HTTP with `security.require-https`

Summary

Ref T12547. See that task for discussion.

Test Plan

Changed storage.default-namespace to a new value.
Upgraded database.
Enabled security.require-https.
Registered over plain HTTP.
After patch, got a more tailored exception instead of the more general/misleading one from before.

Diff Detail

Repository

rP Phabricator

Branch

tailor1

Lint

Lint Passed

Unit

Tests Passed

Build Status

Buildable 16441
Build 21880: Run Core Tests
Build 21879: arc lint + arc unit

Event Timeline

epriestley created this revision.Apr 13 2017, 2:55 PM

Harbormaster completed remote builds in B16441: Diff 42510.Apr 13 2017, 2:56 PM

chad accepted this revision.Apr 13 2017, 3:05 PM

This revision is now accepted and ready to land.Apr 13 2017, 3:05 PM

Revision Contents
Changeset List

Path

Size

src/

aphront/

AphrontRequest.php

23 lines

Diff 42510

View Options

src/aphront/AphrontRequest.php

Tailor the CSRF check message for HTTP requests with "security.require-https"AcceptedPublicActions