Skip to content

Auth: enable CSRF protection (SPA double-submit pattern)#51

Open
RandyJDean wants to merge 1 commit into
07-09-auth_fix_verify_page_stuck_on_spinner_under_strictmodefrom
07-09-auth_enable_csrf_protection_spa_double-submit_pattern_
Open

Auth: enable CSRF protection (SPA double-submit pattern)#51
RandyJDean wants to merge 1 commit into
07-09-auth_fix_verify_page_stuck_on_spinner_under_strictmodefrom
07-09-auth_enable_csrf_protection_spa_double-submit_pattern_

Auth: enable CSRF protection (SPA double-submit pattern)

af31d22
Select commit
Loading
Failed to load commit list.
SonarQubeCloud / SonarCloud Code Analysis failed Jul 10, 2026 in 14s

Quality Gate failed

Failed conditions
D Security Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

Annotations

Check failure on line 102 in src/main/java/org/patinanetwork/patchats/auth/security/SecurityConfig.java

See this annotation in the file changed.

@sonarqubecloud sonarqubecloud / SonarCloud Code Analysis

Make sure disabling Spring Security's CSRF protection is safe here.

See more on https://sonarcloud.io/project/issues?id=Patina-Network_patchats&issues=AZ9Jh5IdgYLa5ehZPHW9&open=AZ9Jh5IdgYLa5ehZPHW9&pullRequest=51

Check warning on line 100 in src/main/java/org/patinanetwork/patchats/auth/security/SecurityConfig.java

See this annotation in the file changed.

@sonarqubecloud sonarqubecloud / SonarCloud Code Analysis

Make sure creating this cookie without the "HttpOnly" flag is safe.

See more on https://sonarcloud.io/project/issues?id=Patina-Network_patchats&issues=AZ9Jh5IdgYLa5ehZPHW-&open=AZ9Jh5IdgYLa5ehZPHW-&pullRequest=51