|
|
|
|
@ -447,7 +447,6 @@ org.owasp.csrfguard.configOverlay.secondsBetweenUpdateChecks = 60
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# please remove the below entry to enable protection for services.
|
|
|
|
|
org.owasp.csrfguard.unprotected.Services=%servletContext%/services/*
|
|
|
|
|
org.owasp.csrfguard.unprotected.oauth=%servletContext%/commonauth/*
|
|
|
|
|
org.owasp.csrfguard.unprotected.samlsso=%servletContext%/samlsso/*
|
|
|
|
|
org.owasp.csrfguard.unprotected.authenticationEndpoint=%servletContext%/authenticationendpoint/*
|
|
|
|
|
@ -464,7 +463,7 @@ org.owasp.csrfguard.unprotected.deviceMgtRestApi=%servletContext%/api/device-mgt
|
|
|
|
|
org.owasp.csrfguard.unprotected.dcrRestApi=%servletContext%/dynamic-client-web/*
|
|
|
|
|
org.owasp.csrfguard.unprotected.deviceMgtSSOAcs=%servletContext%/devicemgt/uuf/sso/acs
|
|
|
|
|
org.owasp.csrfguard.unprotected.deviceMgtAcs=%servletContext%/uuf/sso/acs
|
|
|
|
|
org.owasp.csrfguard.unprotected.deviceMgtApi=%servletContext%/devicemgt/api/invoker/execute/*
|
|
|
|
|
org.owasp.csrfguard.unprotected.deviceMgtApi=%servletContext%/devicemgt/api/*
|
|
|
|
|
org.owasp.csrfguard.unprotected.storeEventPublisher=%servletContext%/store/apis/eventpublish/*
|
|
|
|
|
org.owasp.csrfguard.unprotected.publisherAcs=%servletContext%/publisher/acs
|
|
|
|
|
org.owasp.csrfguard.unprotected.storeAcs=%servletContext%/store/acs
|
|
|
|
|
|
Rasika Perera
8 years ago
committed by
GitHub