Searched hist:"7 e9c08ede1dad0068d3e10955b75202fd9193999" (Results 1 – 2 of 2) sorted by relevance
| /openbmc/bmcweb/http/ |
| H A D | websocket.hpp | diff 7e9c08ede1dad0068d3e10955b75202fd9193999 Fri Jun 16 13:29:37 CDT 2023 Ed Tanous <edtanous@google.com> Revert "Fix websocket csrf checking"
This reverts commit e628df8658c57f6943b6d3612e1077618e5a168a.
This appears to cause problems with non-cookie login of the console
websocket. This appears to be a gap in both our testing, and things
that we have scripting to do, but clearly it's a change in behavior, so
if we want to change the behavior, we should do it intentionally, and
clearly, ideally with a path to make clients work, or an explicit
documentation that the webui is the only supported client.
Change-Id: I334257e1355a5b8431cb7ecfe58ef8a942f4981c
Signed-off-by: Ed Tanous <edtanous@google.com>
|
| /openbmc/bmcweb/include/ |
| H A D | sessions.hpp | diff 7e9c08ede1dad0068d3e10955b75202fd9193999 Fri Jun 16 13:29:37 CDT 2023 Ed Tanous <edtanous@google.com> Revert "Fix websocket csrf checking"
This reverts commit e628df8658c57f6943b6d3612e1077618e5a168a.
This appears to cause problems with non-cookie login of the console
websocket. This appears to be a gap in both our testing, and things
that we have scripting to do, but clearly it's a change in behavior, so
if we want to change the behavior, we should do it intentionally, and
clearly, ideally with a path to make clients work, or an explicit
documentation that the webui is the only supported client.
Change-Id: I334257e1355a5b8431cb7ecfe58ef8a942f4981c
Signed-off-by: Ed Tanous <edtanous@google.com>
|