Uploaded image for project: 'Struts 2'
  1. Struts 2
  2. WW-3858

Decouple token names from their respective session attribute names

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.3.4
    • 2.3.4.1
    • Core Interceptors
    • None

    Description

      Currently token names are used as is to store session attributes for later token check. By namespacing session attributes security can be improved.

      Attachments

        Activity

          People

            rgielen René Gielen
            rgielen René Gielen
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: