Thanks to visit codestin.com
Credit goes to github.com

Skip to content

[Port dspace-7_x] Add a GET /csrf endpoint to allow for forcing refresh of CSRF token #9599

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
kshepherd merged 3 commits into from
Jun 29, 2024
Merged

[Port dspace-7_x] Add a GET /csrf endpoint to allow for forcing refresh of CSRF token #9599

kshepherd merged 3 commits into from
Jun 29, 2024

Conversation

@tdonohue
Copy link
Member

@tdonohue tdonohue commented May 16, 2024

References

Description

Add /api/security/csrf endpoint which can be used to automatically obtain or refresh CSRF token

@tdonohue tdonohue added bug high priority 1 APPROVAL pull request only requires a single approval to merge. labels May 16, 2024
@tdonohue tdonohue added this to the 7.6.2 milestone May 16, 2024
@tdonohue tdonohue added the work in progress PR is still being worked on & is not currently ready for review label May 16, 2024
@tdonohue tdonohue removed the work in progress PR is still being worked on & is not currently ready for review label May 17, 2024
This was referenced May 17, 2024
Merged
Closed
@tdonohue tdonohue added the component: statistics Related to Statistics (Solr or Google Analytics) label May 17, 2024
@tdonohue
Copy link
Member Author

tdonohue commented May 17, 2024

👍 Tested this locally with DSpace/dspace-angular#3063 and it's working the same as it does on main / pre-8.0.

@tdonohue tdonohue mentioned this pull request May 17, 2024
Merged
@tdonohue tdonohue requested a review from kshepherd June 27, 2024 14:14
kshepherd
kshepherd approved these changes Jun 29, 2024
View reviewed changes
Copy link
Member

@kshepherd kshepherd left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+1, tested and reproduced the problem in my 7.x local branch then applied this PR, and no longer see a 403 to viewevents. The code and tests look fine.

@kshepherd kshepherd merged commit d47c00a into DSpace:dspace-7_x Jun 29, 2024
@tdonohue tdonohue deleted the port_new_csrf_endpoint_to_7x branch July 1, 2024 15:07
@tdonohue tdonohue mentioned this pull request Jul 1, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kshepherd kshepherd kshepherd approved these changes

Assignees

@tdonohue tdonohue

Labels

1 APPROVAL pull request only requires a single approval to merge. bug component: statistics Related to Statistics (Solr or Google Analytics) high priority

Projects

DSpace Maintenance (9.x, 8.x, 7.6.x)
Archived in project

Milestone

7.6.2

Development

Successfully merging this pull request may close these issues.

2 participants

@tdonohue @kshepherd