ProfouzorsLinx

Commit Graph

Author	SHA1	Message	Date
mutantmonkey	39d874374d	trim trailing / for origin checking	2015-10-11 20:06:14 -07:00
mutantmonkey	6ff181facb	add strict referrer check for POST uploads This should protect against cross-site request forgery without the need for cookies. It continues to allow requests with Linx-Delete-Key, Linx-Expiry, or Linx-Randomize headers as these will not be set in the case of cross-site requests.	2015-10-08 20:27:04 -07:00

Author

SHA1

Message

Date

mutantmonkey

39d874374d

trim trailing / for origin checking

2015-10-11 20:06:14 -07:00

mutantmonkey

6ff181facb

add strict referrer check for POST uploads

This should protect against cross-site request forgery without the need
for cookies. It continues to allow requests with Linx-Delete-Key,
Linx-Expiry, or Linx-Randomize headers as these will not be set in the
case of cross-site requests.

2015-10-08 20:27:04 -07:00

2 Commits