LupusNobilis
/
sogo
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

(web) Fix XSRF cookie path when changing password 

Fixes #4139
pull/218/merge
Francis Lachapelle 2017-09-19 09:44:37 -04:00
parent 391410a4ec
commit 789398bd27
2 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
NEWS
View File

@ -20,6 +20,7 @@ Bug fixes
- [web] messages list not accessible when changing mailbox in expanded mail view (#4269)
- [web] only one postal address of same type is saved (#4091)
- [web] improve handling of email notifications of a calendar properties
- [web] fixed XSRF cookie path when changing password (#4139)
- [eas] hebrew folders encoding problem using EAS (#4240)
3.2.10 (2017-07-05)

1
UI/MainUI/SOGoRootPage.m
View File

@ -623,6 +623,7 @@
creds = [auth parseCredentials: [authCookie value]];
xsrfCookie = [WOCookie cookieWithName: @"XSRF-TOKEN"
value: [[SOGoSession valueForSessionKey: [creds lastObject]] asSHA1String]];
[xsrfCookie setPath: [NSString stringWithFormat: @"/%@/", [request applicationName]]];
[response addCookie: xsrfCookie];
}
else