From: Ioakeim Samaras Date: Thu, 26 Sep 2019 07:26:30 +0000 (+0300) Subject: [UI] Prevent UI from XSS X-Git-Tag: 2.0.0~32 X-Git-Url: https://gerrit.akraino.org/r/gitweb?a=commitdiff_plain;h=refs%2Fchanges%2F53%2F1653%2F1;p=validation.git [UI] Prevent UI from XSS Prevent UI from XSS (Cross-site-scripting) attacks. JIRA: VAL-56 Signed-off-by: Ioakeim Samaras Change-Id: Iab877852f0f4c35e36a23c2cae301dffd3d57827 --- diff --git a/ui/CHANGELOG.md b/ui/CHANGELOG.md index 50d234a..de1afb2 100644 --- a/ui/CHANGELOG.md +++ b/ui/CHANGELOG.md @@ -190,3 +190,11 @@ All notable changes to this project will be documented in this file. - Password of users that try to login is taken into account ### Removed + +## [0.3.4-SNAPSHOT] - 26 September 2019 +### Added +- Prevent XSS attacks + +### Changed + +### Removed diff --git a/ui/pom.xml b/ui/pom.xml index 614d2ff..870b3a1 100644 --- a/ui/pom.xml +++ b/ui/pom.xml @@ -14,7 +14,7 @@ org.akraino.validation ui - 0.3.3-SNAPSHOT + 0.3.4-SNAPSHOT Bluval UI Maven Webapp war diff --git a/ui/src/main/webapp/WEB-INF/web.xml b/ui/src/main/webapp/WEB-INF/web.xml index 6fd8b99..e65accc 100644 --- a/ui/src/main/webapp/WEB-INF/web.xml +++ b/ui/src/main/webapp/WEB-INF/web.xml @@ -20,6 +20,10 @@ 30 COOKIE + + true + true + SecurityXssFilter