Loading...

XML

Word

Printable

Type: New Feature
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: 3.2.0
Component/s: security
Labels:
None
Environment:

Spring security 4

There is no way to start an application with spring security 4 due to the CSFR by default, every ajax request is reject with a 403 access denied on /zkau. when it is disabled all works right.

<csrf disabled="true"/>

is blocked by

ZK-5461 Provide easy-to-override headers functions to client-side request emmitors

Open

relates to

ZK-5438 support a way to work with Spring Security CSRF

Open

Assignee:: cor3000

Reporter:: dgofast

Votes:: 1 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 28/Apr/16 4:33 PM

Updated:: 25/Dec/24 9:32 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates