secured-links
secured-links copied to clipboard
CSRF protection for Nette Framework presenters' signals.
Results
5
secured-links issues
Sort by
recently updated
recently updated
newest added
Annotation `/** @secured*/` silently fails.
bug
enhancement
Verify that http://breachattack.com/ does not affect this library is that is is properly mitigated.
We currently use in are app ugly workaround ~~~php $params = array_map( function ($param) { return is_object($param) && method_exists($param, 'getId') ? $param->getId() : $param; }, $params ); ~~~
enhancement
This is a WIP of **experimental redesign** of Nextras Secured Links. The new implementation (`SecuredRouter`) moved the logic from controls / presenters to router layer. ### Benefits - Does not...
It seems that only signals can be protected. But I usually use render or action methods for actions which should be protected (e.g. renderDelete).
enhancement