From 90fb5426c7f99f8d2677a5aeb15daaa055b64492 Mon Sep 17 00:00:00 2001
From: Francis Lachapelle <flachapelle@inverse.ca>
Date: Tue, 30 Mar 2021 16:42:57 -0400
Subject: [PATCH] chore(conf): enable XSRF validation by default

---
 Documentation/SOGoInstallationGuide.asciidoc | 2 +-
 SoObjects/SOGo/SOGoDefaults.plist            | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/Documentation/SOGoInstallationGuide.asciidoc b/Documentation/SOGoInstallationGuide.asciidoc
index 33b7418c9..20b4240ce 100644
--- a/Documentation/SOGoInstallationGuide.asciidoc
+++ b/Documentation/SOGoInstallationGuide.asciidoc
@@ -778,7 +778,7 @@ must be set to a value equal or higher than _SOGoRequestBlockInterval_.
 
 |D |SOGoXSRFValidationEnabled
 |Parameter used to enable or not XSRF (also known as CSRF) protection in SOGo.
-Default value is `NO`, or disabled.
+Default value is `YES`, or enabled.
 
 |=======================================================================
 
diff --git a/SoObjects/SOGo/SOGoDefaults.plist b/SoObjects/SOGo/SOGoDefaults.plist
index 7f16ef018..e8ac96b09 100644
--- a/SoObjects/SOGo/SOGoDefaults.plist
+++ b/SoObjects/SOGo/SOGoDefaults.plist
@@ -6,7 +6,7 @@
     WOPidFile = "/var/run/sogo/sogo.pid";
     WOHTTPAdaptorCapitalizeHeaders = YES;
     WOPort = "127.0.0.1:20000";
-    SOGoXSRFValidationEnabled = NO;
+    SOGoXSRFValidationEnabled = YES;
 
     NGImap4ConnectionStringSeparator = "/";
     NGImap4ConnectionGroupIdPrefix = "$";