JSF 2.0 using Post-Redirect-Post facing Security Threat (Vulnerability - Post Accpted as GET)
posted 3 years ago
I'm new to JSF 2.0 and am using faces-redirect=true for Page redirecting same to return from a Pop up screen. but in security findings i caught.. in which the post method using faces redirect it show all param's while passing / return from Pop up and same thing happen in page navigation as well
userProfile.XHTML?faces-redirect = true
Please suugest, how to resolve this Security findings ?