[3199711-allow-certain-paths] Allow certain paths to be excluded from the CSRF Origin check (!45) · Merge requests · project / seckit

joshhytr requested to merge issue/seckit-3199711:3199711-allow-certain-paths into 2.x Nov 28, 2024

Add seckit_csrf.origin_exclude_paths configuration setting. Do not check origin in CSRF protection if domain appears in seckit_csrf.origin_exclude_paths settings.

[3199711-allow-certain-paths]

Closes #3199711

[3199711-allow-certain-paths] Allow certain paths to be excluded from the CSRF Origin check

Merge request reports